WebX Auditor

Modern TLS protocol (TLS 1.2+)

The HTTPS endpoint must negotiate TLS 1.2 or higher. TLS 1.0/1.1 and all SSL versions are deprecated and exploitable (BEAST, POODLE) and are disallowed by CERT-In server-hardening guidance.

Security OWASP ASVS V9.1.3 (TLS configuration) Advanced Security Audit
In short

The site negotiated a deprecated TLS/SSL version. Serve TLS 1.2 or higher. This check is fully automated — the scanner returns a definitive pass or fail.

How to fix it

Disable TLS 1.0, TLS 1.1 and all SSL versions on the web server / load balancer / CDN. Enable only TLS 1.2 and TLS 1.3 with modern cipher suites.

Standards this maps to

Frameworks that require this

Advanced Security Audit

Severity

critical — a blocking issue that should be fixed first.

Scans this and 300+ other checks across accessibility, SEO, security & speed — first audit free.

Related checks

Contingency Management PlanData ProtectionSQL Injection ProtectionXSS Protection (CSP preferred over X-XSS-Protection)CSRF Token ValidationSecure File UploadInput ValidationTLS 1.2+ EnforcementSecurity Headers CSP and HSTSCookie Security Flags