The application’s App Transport Security (ATS) configuration disables Perfect Forward Secrecy (PFS) for one or more domains. PFS is a cryptographic technique to ensure the confidentiality of prior communications, even if the long-term secret keys are compromised in the future. Likelihood: LOW Confidence: HIGH CWE: - CWE-327: Use of a Broken or Risky Cryptographic Algorithm
OWASP: - A03:2017 - Sensitive Data Exposure
- A02:2021 - Cryptographic Failures