AWS-CloudFront-Insecure-CloudFront-Protocols
- naveen
Owned by naveen
Dec 06, 2021
1 min read
Loading data...
Severity : High
Description : CloudFront supports SSLv3 and TLSv1 protocols for use with HTTPS traffic, but only TLSv1.1 or higher should be used unless there is a valid business justification to support the older, insecure SSLv3.
Remediation Steps : Ensure that traffic sent between viewers and CloudFront is passed over HTTPS and uses TLSv1.1 or higher.
Blue Hexagon Proprietary