Azure Access BLU-IC2 and BLU-IC4 Non-Compliant TLS Configuration Vulnerability

Vulnerability

A vulnerability exists in Azure Access BLU-IC2 and BLU-IC4 products, affecting versions through 1.19.5, due to a non-compliant TLS configuration. This vulnerability could potentially expose users to security risks by allowing for weaker encryption standards or improper certificate validation, which could be exploited by attackers to intercept or manipulate data.

Impact

The non-compliant TLS configuration could lead to weakened encryption, allowing for potential interception or manipulation of data transmitted over the network.

Added: Oct 29, 2025, 5:31 PM

Updated: Oct 29, 2025, 5:31 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.7

exploitability

7.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.7

exploitability

7.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Azure Access BLU-IC2 and BLU-IC4 Non-Compliant TLS Configuration Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating