CVE-2020-36363
CRITICALAmazon CloudFront TLSv1.2_2019 - Use of Weak TLS Ciphers
Title source: llmDescription
Amazon AWS CloudFront TLSv1.2_2019 allows TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 and TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, which some entities consider to be weak ciphers.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_misc
https://stackoverflow.com/questions/62071604
Vendor Advisory x_refsource_misc
https://aws.amazon.com/about-aws/whats-new/2020/07/cloudfront-tls-security-policy/
Scores
CVSS v3
9.8
EPSS
0.0028
EPSS Percentile
51.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-327
Status
published
Products (1)
amazon/amazon_cloudfront
1.2_2019
Published
Aug 12, 2021
Tracked Since
Feb 18, 2026