Always prefer cipher suites with PFS property over the non-PFS ones. Note that performance considerations implies preferring Ephemeral Elliptic-curve Diffie–Hellman over Ephemeral Diffie-Hellman.
Remove the cipher suite from the list of cipher suites supported by your server or at least set the cipher suite order explicitly and any cipher suite modes be preferred over ciphers suites with CBC modes.
Encryption Key Size
Any symmetric key with key size less than 128 bits are disallowed by National Institute of Standards and Technology as it is vulnerable to preimage attack in theory. It cannot reliably prove that message came from the stated sender (its authenticity) and has not been changed, so connection is open for a man-in-the-middle attack.
Remove the cipher suite from the list of cipher suites supported by your server.