Cortex XSOAR: Cleartext Exposure of Client Certificate Key in Kafka v3 Integration

A problem with the Cortex XSOAR Kafka v3 integration can result in the cleartext exposure of the configured Kafka client certificate key. Work around: No work around available...

PT-2016-4072

Name of the Vulnerable Software and Affected Versions TLS protocol versions 1.2 and earlier Description The issue allows man-in-the-middle attackers to spoof TLS servers by leveraging knowledge of the secret key for an arbitrary installed client X.509 certificate. This is due to the TLS protocol...