• 0
  • 2
  • Article
  • Updated 3 years ago

CVE-2015-4000 "LogJam" issue is due to the TLS protocol 1.2 and earlier not properly conveying a DHE_EXPORT choice when a DHE_EXPORT ciphersuite is enabled on a server but not on a client. This allows man-in-the-middle attackers to conduct cipher-downgrade attacks.

Extreme Networks response to CVE-2015-4000 "LogJam" vulnerability is available at the following url:

Photo of Weidle, Bert

Weidle, Bert, Services Program Manager

  • 534 Points 500 badge 2x thumb

Posted 3 years ago

  • 0
  • 2

Be the first to post a reply!