CVE-2020-12872 log

Source
Severity Medium
Remote Yes
Type Information disclosure
Description
yaws_config.erl in Yaws through 2.0.7 loads obsolete TLS ciphers, as demonstrated by ones that allow Sweet32 attacks.
Group Package Affected Fixed Severity Status Ticket
AVG-1228 yaws 2.0.7-2 2.0.8-1 High Fixed
Date Advisory Group Package Severity Description
26 Sep 2020 ASA-202009-14 AVG-1228 yaws High multiple issues
References
https://sweet32.info/
https://medium.com/@charlielabs101/cve-2020-12872-df315411aa70