Description
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.
Remediation
References
Related Vulnerabilities
CKEditor Other Vulnerability (CVE-2022-24729)
Django Improper Input Validation Vulnerability (CVE-2023-31047)
Oracle JRE CVE-2020-2654 Vulnerability (CVE-2020-2654)
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-3092)
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-2432)