A- Active Projects » BSN Corporate Digital Banking

The server is using a common or default prime number as a parameter during the Diffie-Hellman key exchange. This makes the secure session vulnerable to a precomputation attack. An attacker can spend a significant amount of time to generate a lookup/rainbow table for a particular prime number. This lookup table can then be used to obtain the shared secret for the handshake and decrypt the session.

Solution provided by LGMS :

Configure the server to use a randomly generated Diffie-Hellman group. It's recommend to generate a 2048-bit group. The simplest way of generating a new group is to use OpenSSL:
openssl dhparam -out dhparams.pem 2048

To use the DH parameters in newer versions of Apache (2.4.8 and newer) and OpenSSL 1.0.2 or later, directly specify DH params file as follows:
SSLOpenSSLConfCmd DHParameters "{path to dhparams.pem}"

If Apache with LibreSSL, or Apache 2.4.7 and OpenSSL 0.9.8a or later is in use, append the DHparams generated earlier to the end of the certificate file and reload the configuration.

For other products see https://weakdh.org/sysadmin.html the remediation steps suggested by the original researchers.