Vulnerabilities / TLS Downgrade attack prevention not supported

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
↓

Severity	low
Correlatable	sast
CWE Name	TLS Downgrade attack prevention not supported
CWE ID	CWE-757
CWE Score	4.2
Compliance	OWASP TOP10 -> A2 PCI-DSS -> 4.1, 6.5.4 ISO 27001 -> A.5.14, A.8.9, A.8.24 HIPAA -> 164.306(a), 164.312(c)(1), 164.312(e)(1)
CVSS	3.0
Attack Vector	Adjacent Network
Attack Complexity	High
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality Impact	Low
Integrity Impact	Low
Availability Impact	None

TLS Downgrade attack prevention not supported