pcx_content_type	source	title
troubleshooting	https://support.cloudflare.com/hc/en-us/articles/4422920018317-Cloudflare-and-CVE-2019-1559	Cloudflare and CVE-2019-1559

Cloudflare and CVE-2019-1559

The GOLDENDOODLE and Zombie POODLE attacks affect applications that use certain cipher suites associated with TLS 1.2.

Any application on Cloudflare, however, is not vulnerable to these attacks because Cloudflare does not use the affected version of openssl at its edge.

Cloudflare could not remove these cipher suites from our edge by default because we did not want to break customer applications using legacy cipher suites.

Remove warnings from external security scanners

Even though your application is not vulnerable to CVE-2019-1559, some security scanners may flag your application erroneously.

To remove these warnings, refer to Customize cipher suites and exclude the following ciphers:

ECDHE-ECDSA-AES256-SHA384
ECDHE-ECDSA-AES128-SHA256
ECDHE-RSA-AES256-SHA384

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

cloudflare-and-cve-2019-1559.md

cloudflare-and-cve-2019-1559.md

Cloudflare and CVE-2019-1559

Remove warnings from external security scanners

Dateien

cloudflare-and-cve-2019-1559.md

Latest commit

History

cloudflare-and-cve-2019-1559.md

File metadata and controls

Cloudflare and CVE-2019-1559

Remove warnings from external security scanners