An outdated SSL policy is in use by a load balancer.

Property
Language
Severity
Service	elb
Provider	AWS
Vulnerability Type	misconfiguration

Description#

The load balancer is configured to use an outdated SSL/TLS policy, enabling insecure or deprecated protocol versions for encrypted connections. This exposes traffic to known cryptographic vulnerabilities that have been addressed in newer TLS versions.

Impact#

Attackers could exploit weaknesses in outdated TLS protocols to intercept, decrypt, or manipulate sensitive data in transit. This may lead to data breaches, loss of confidentiality, and non-compliance with security standards and regulations.

Resolution#

Use a more recent TLS/SSL policy for the load balancer