SAM API domain name uses outdated SSL/TLS protocols.
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | sam |
| Provider | AWS |
| Vulnerability Type | misconfiguration |
Description#
The SAM API domain is configured to use outdated or insecure SSL/TLS protocols instead of enforcing TLS v1.2 or higher. This allows encrypted connections to use legacy cryptographic standards with known weaknesses.
Impact#
Attackers could exploit vulnerabilities in obsolete TLS versions to intercept, decrypt, or manipulate sensitive data transmitted to and from the API. This exposes the application to risks such as data breaches, man-in-the-middle attacks, and regulatory non-compliance.
Resolution#
Use the most modern TLS/SSL policies available