ATS-minimum-tls-version
ATS-minimum-tls-version
The application’s App Transport Security (ATS) configuration lowers the minimum TLS version requirement for one or more domains. This potentially reduces the efficacy of the transport layer security, allowing for older, more vulnerable versions of TLS to be utilized.
Likelihood: LOW
Confidence: HIGH
CWE:
- C
- W
- E
- -
- 7
- 5
- 7
- :
-
- S
- e
- l
- e
- c
- t
- i
- o
- n
-
- o
- f
-
- L
- e
- s
- s
- -
- S
- e
- c
- u
- r
- e
-
- A
- l
- g
- o
- r
- i
- t
- h
- m
-
- D
- u
- r
- i
- n
- g
-
- N
- e
- g
- o
- t
- i
- a
- t
- i
- o
- n
-
- (
- ’
- A
- l
- g
- o
- r
- i
- t
- h
- m
-
- D
- o
- w
- n
- g
- r
- a
- d
- e
- ’
- )
Likelihood: LOW
Confidence: HIGH
CWE:
- C
- W
- E
- -
- 7
- 5
- 7
- :
-
- S
- e
- l
- e
- c
- t
- i
- o
- n
-
- o
- f
-
- L
- e
- s
- s
- -
- S
- e
- c
- u
- r
- e
-
- A
- l
- g
- o
- r
- i
- t
- h
- m
-
- D
- u
- r
- i
- n
- g
-
- N
- e
- g
- o
- t
- i
- a
- t
- i
- o
- n
-
- (
- ’
- A
- l
- g
- o
- r
- i
- t
- h
- m
-
- D
- o
- w
- n
- g
- r
- a
- d
- e
- ’
- )