CVE-2019-14852

Summary

A flaw was found in 3scale’s APIcast gateway that enabled the TLS 1.0 protocol. An attacker could target traffic using this weaker protocol and break its encryption, gaining access to unauthorized information. Version shipped in Red Hat 3scale API Management Platform is vulnerable to this issue.

Affected Software

VendorProductVersion RangeStatus
n/aapicastAs shipped with Red Hat 3scale API Management Platformaffected

Weaknesses

  • CWE-327: CWE-327

ADP Enrichment

CVE Program Container

Additional References

References