A flaw was found in 3scale’s APIcast gateway that enabled the TLS 1.0 protocol. An attacker could target traffic using this weaker protocol and break its encryption, gaining access to unauthorized information. Version shipped in Red Hat 3scale API Management Platform is vulnerable to this issue.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1758208 | Issue Tracking Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=1758208 | Issue Tracking Third Party Advisory |
Configurations
History
21 Nov 2024, 04:27
Type | Values Removed | Values Added |
---|---|---|
References | () https://bugzilla.redhat.com/show_bug.cgi?id=1758208 - Issue Tracking, Third Party Advisory |
Information
Published : 2021-03-18 20:15
Updated : 2024-11-21 04:27
NVD link : CVE-2019-14852
Mitre link : CVE-2019-14852
CVE.ORG link : CVE-2019-14852
JSON object : View
Products Affected
redhat
- 3scale_api_management
CWE
CWE-327
Use of a Broken or Risky Cryptographic Algorithm