Poodle SSL Issue (CVE-2014-3566) And Oracle API Gateway
(Doc ID 1943916.1)
Last updated on OCTOBER 07, 2022
Applies to:
Oracle API Gateway - Version 11.1.2.1.0 and laterInformation in this document applies to any platform.
Symptoms
The Poodle SSL security vulnerability (CVE-2014-3566) has been discussed at length among security experts and the recommended action is to completely disable SSLv3 for product communication in favour of TLS protocols.
Further reading:
POODLE: SSLv3 vulnerability (CVE-2014-3566)
SSL 3.0 Protocol Vulnerability and POODLE Attack
This POODLE Bites: Exploiting The SSL 3.0 Fallback
POODLE: SSLv3 vulnerability (CVE-2014-3566)
SSL 3.0 Protocol Vulnerability and POODLE Attack
This POODLE Bites: Exploiting The SSL 3.0 Fallback
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |