📄

Report #30476

Report Date
April 27, 2024
Status
Closed
Payout

Insecure TLS Protocol Support (TLS 1.0)

Report Info

Report ID

#30476

Report type

Websites and Applications

Has PoC?

Yes

Target

https://basin.exchange

Impacts

  • Lack of valid SSL/TLS

Description

The continued support of TLS 1.0 poses a severe security risk by potentially allowing attackers to decrypt sensitive data transferred over the network.

Vulnerability Details

The website "https://basin.exchange/" supports TLS 1.0, a cryptographic protocol designed to provide communications security over a computer network. Despite its initial purpose, TLS 1.0 is now deprecated due to inherent vulnerabilities that expose it to several attack vectors, including but not limited to cipher block chaining (CBC) attacks and protocol downgrade attacks.

Impact Details

An attacker positioned as a man-in-the-middle could exploit the known vulnerabilities in TLS 1.0 to decrypt or alter the communications, potentially stealing sensitive data or injecting malicious content into the sessions.

References

https://datatracker.ietf.org/doc/html/rfc8996

Immunefi Response

Immunefi has reviewed this vulnerability report and decided to close since being out of scope for Beanstalk bug bounty program.
  • claimed impact by the whitehat is in scope for the bug bounty program
  • claimed asset by the whitehat is in scope for the bug bounty program
  • PoC has not been submitted to the project
  • claimed severity is in scope for the bug bounty program

The project will now be automatically subscribed and receive a report of the closed submission and can evaluate if they are interested in re-opening it. However, note that they are not under any obligation to do so.