CloudFront distribution uses outdated SSL/TLS protocols.
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | cloudfront |
| Provider | AWS |
| Vulnerability Type | omission |
Description#
The CloudFront distribution is configured to use outdated SSL/TLS protocols for encrypting traffic, rather than enforcing modern standards like TLS v1.2 or higher. This weakens the security of data in transit due to reliance on protocols with known vulnerabilities.
Impact#
Using outdated TLS versions exposes the distribution to attacks such as eavesdropping and man-in-the-middle exploits, potentially allowing attackers to intercept or manipulate sensitive data. This can lead to data breaches, loss of confidentiality, and non-compliance with security standards.
Resolution#
Use the most modern TLS/SSL policies available