POODLE for TLS
|Knowledge Article Number||000206464|
At Salesforce, trust is our #1 value and we take the protection of our customers' data very seriously. On December 8, 2014, researchers published details on a security vulnerability (CVE-2014-8730) that affects certain implementations of the TLS (Transport Layer Security) protocol. This vulnerability is a variation of the previously announced POODLE vulnerability, which affects the Secure Socket Layer (SSL) version 3 protocol and may allow a man-in-the-middle attack to extract data from secure HTTP connections.
We have remediated the susceptible implementations of TLS in our infrastructure to fully address this issue. We appreciate your trust in us as we continue to make your success our top priority.