topic Nessus scan shows CVE-2012-4930, CVE-2012-4929 vulnerabilities in Splunk Enterprise Security https://community.splunk.com/t5/Splunk-Enterprise-Security/Nessus-scan-shows-CVE-2012-4930-CVE-2012-4929-vulnerabilities/m-p/515695#M9161 <P>Hello All,</P><P>In my organisation, the Nessus scanner scans the Splunk servers and other application servers. Scanner found the vulnerabilities&nbsp;<STRONG>CVE-2012-4930, CVE-2012-4929&nbsp;</STRONG>with the port <STRONG>8089</STRONG>. Splunk servers have open SSL certs and the other application servers have Splunk UF as well.<BR /><STRONG>SSL Self-Signed Certificate</STRONG><BR /><STRONG>SSL Certificate Cannot Be Trusted</STRONG><BR /><STRONG>SSL Certificate with Wrong Hostname</STRONG><BR /><STRONG>Transport Layer Security (TLS) Protocol CRIME Vulnerability</STRONG></P><P>Can anyone please share the inputs what I have to do to remove the above vulnerabilities.<BR />1. For Splunk servers what are the changes that need to be done?<BR />2. For application servers where UF is installed what are the changes that need to be done?<BR />3. Or if we install the trusted SSL certs in Splunk servers is it enough to do to get remove the&nbsp;vulnerabilities.</P> Mon, 24 Aug 2020 06:12:07 GMT phanichintha 2020-08-24T06:12:07Z Nessus scan shows CVE-2012-4930, CVE-2012-4929 vulnerabilities https://community.splunk.com/t5/Splunk-Enterprise-Security/Nessus-scan-shows-CVE-2012-4930-CVE-2012-4929-vulnerabilities/m-p/515695#M9161 <P>Hello All,</P><P>In my organisation, the Nessus scanner scans the Splunk servers and other application servers. Scanner found the vulnerabilities&nbsp;<STRONG>CVE-2012-4930, CVE-2012-4929&nbsp;</STRONG>with the port <STRONG>8089</STRONG>. Splunk servers have open SSL certs and the other application servers have Splunk UF as well.<BR /><STRONG>SSL Self-Signed Certificate</STRONG><BR /><STRONG>SSL Certificate Cannot Be Trusted</STRONG><BR /><STRONG>SSL Certificate with Wrong Hostname</STRONG><BR /><STRONG>Transport Layer Security (TLS) Protocol CRIME Vulnerability</STRONG></P><P>Can anyone please share the inputs what I have to do to remove the above vulnerabilities.<BR />1. For Splunk servers what are the changes that need to be done?<BR />2. For application servers where UF is installed what are the changes that need to be done?<BR />3. Or if we install the trusted SSL certs in Splunk servers is it enough to do to get remove the&nbsp;vulnerabilities.</P> Mon, 24 Aug 2020 06:12:07 GMT https://community.splunk.com/t5/Splunk-Enterprise-Security/Nessus-scan-shows-CVE-2012-4930-CVE-2012-4929-vulnerabilities/m-p/515695#M9161 phanichintha 2020-08-24T06:12:07Z Re: Nessus scan shows CVE-2012-4930, CVE-2012-4929 vulnerabilities https://community.splunk.com/t5/Splunk-Enterprise-Security/Nessus-scan-shows-CVE-2012-4930-CVE-2012-4929-vulnerabilities/m-p/515793#M9162 See <A href="https://community.splunk.com/t5/Archive/Splunk-shows-vulnerable-to-CVE-2012-4929-in-my-Nessus/td-p/29091" target="_blank">https://community.splunk.com/t5/Archive/Splunk-shows-vulnerable-to-CVE-2012-4929-in-my-Nessus/td-p/29091</A> Mon, 24 Aug 2020 13:38:27 GMT https://community.splunk.com/t5/Splunk-Enterprise-Security/Nessus-scan-shows-CVE-2012-4930-CVE-2012-4929-vulnerabilities/m-p/515793#M9162 richgalloway 2020-08-24T13:38:27Z