# Attacks on TLS ## [Vulnerabilities listed in rustls documentation](https://docs.rs/rustls/latest/rustls/manual/_02_tls_vulnerabilities/index.html) Links: [[rustls]] ### CBC MAC-then-encrypt ciphersuites - [[Lucky 13]] ### RSA PKCS#1 encryption - [[ROBOT (2018)]] ### [[BEAST (CVE-2011-3389)]] ### [[CRIME (CVE-2012-4929)]] ### [[Logjam (CVE-2015-4000)]] ### [[FREAK (CVE-2015-0204)]] ### [[SWEET32 (CVE-2016-2183)]] ### [[DROWN (CVE-2016-0800)]] ### [[POODLE (CVE-2014-3566)]] ### GCM nonces ### Renegotiation ### [[3SHAKE (2014)]] ### [[KCI (2015)]]