Is PAM affected by CVE-2020-1968 Raccon Attack vulnerability?
Article ID: 409576
Updated On:
Products
CA Privileged Access Manager (PAM)
Issue/Introduction
TLS1.2 was mentioned vulnerable to
Raccoon Attack: Researchers Find A Vulnerability in TLS 1.2 - Hashed Out by The SSL Storeā¢
Is PAM that uses TLS1.2 affected by this vulnerability?
Environment
PAM 4.2.x
Resolution
PAM 4.2 versions are not affected by Raccon Attack (CVE-2020-1968) vulnerability.
According to CVE-2020-1968 published documentation, this issue only impacts DH ciphersuites and not ECDH ciphersuites. There is no DH ciphersuites being used for TLS 1.2 Ciphers.
Feedback
Yes
No
Powered by
