Databases should have the minimum TLS set for connections
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | database |
| Provider | Azure |
| Vulnerability Type | omission |
Description#
The configuration allows database connections using outdated TLS versions (below 1.2), which do not provide adequate encryption. This exposes data in transit to known vulnerabilities in older TLS protocols.
Impact#
Attackers could exploit weaknesses in older TLS versions to intercept or manipulate sensitive data between clients and the database, leading to data breaches, credential theft, or unauthorized access to the database environment.
Resolution#
Use the most modern TLS policies available