CVE-2019-14852

A flaw was found in 3scale’s APIcast gateway that enabled the TLS 1.0 protocol. An attacker could target traffic using this weaker protocol and break its encryption, gaining access to unauthorized information. Version shipped in Red Hat 3scale API Management Platform is vulnerable to this issue.
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=1758208 Issue Tracking Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:redhat:3scale_api_management:2.0:*:*:*:*:*:*:*

History

04 Jun 2021, 12:07

Type Values Removed Values Added
CPE cpe:2.3:a:redhat:3scale_api_management_platform:2.0:*:*:*:*:*:*:* cpe:2.3:a:redhat:3scale_api_management:2.0:*:*:*:*:*:*:*

Information

Published : 2021-03-18 20:15

Updated : 2024-02-04 21:23


NVD link : CVE-2019-14852

Mitre link : CVE-2019-14852

CVE.ORG link : CVE-2019-14852


JSON object : View

Products Affected

redhat

  • 3scale_api_management
CWE
CWE-327

Use of a Broken or Risky Cryptographic Algorithm