J2SEE and Weblogic support the following 2 NULL Chiper suites

TLS_RSA_WITH_NULL_SHA

0

TLS_RSA_WITH_NULL_MD5

 

If NULL chiper is used, the SSL transmission will be not encrypted, resulting in vulnerability.

Add the following in the weblogic startup to disable NULL chiper suites

-Dweblogic.security.disableNullCipher=true