The POODLE attack

Impact: Medium


The POODLE attack (Padding Oracle On Downgraded Legacy Encryption) is a vulnerability that exploits SSL 3.0 fallback mechanisms in internet and security software clients. Attackers can intercept and decrypt sensitive information by forcing the use of SSL 3.0 and exploiting its weak encryption. This attack poses a significant risk to confidentiality and integrity.


Disable SSL 3.0 support on servers and clients to prevent exploitation. Use modern TLS protocols and configure servers to prioritize their use over SSL 3.0. Regularly update and patch software to mitigate known vulnerabilities.


Last updated on May 13, 2024

Use SmartScanner Free version to test for this issue