Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-0214
apple
safari
ssl
bypass
vulnerability
cfnetwork
windows
cve-2011-0214
7.8 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
35.0%
CFNetwork in Apple Safari before 5.0.6 on Windows does not properly handle an untrusted attribute of a system root certificate, which allows remote web servers to bypass intended SSL restrictions via a certificate signed by a blacklisted certification authority.
Affected configurations
Node
applecfnetwork
ORapplesafariRange≤5.0.5
ORapplesafariMatch1.0
ORapplesafariMatch1.0beta
ORapplesafariMatch1.0beta2
ORapplesafariMatch1.0.0
ORapplesafariMatch1.0.0b1
ORapplesafariMatch1.0.0b2
ORapplesafariMatch1.0.1
ORapplesafariMatch1.0.2
ORapplesafariMatch1.0.3
ORapplesafariMatch1.0.385.8
ORapplesafariMatch1.0.385.8.1
ORapplesafariMatch1.1
ORapplesafariMatch1.1.0
ORapplesafariMatch1.1.1
ORapplesafariMatch1.2
ORapplesafariMatch1.2.0
ORapplesafariMatch1.2.1
ORapplesafariMatch1.2.2
ORapplesafariMatch1.2.3
ORapplesafariMatch1.2.4
ORapplesafariMatch1.2.5
ORapplesafariMatch1.3
ORapplesafariMatch1.3.0
ORapplesafariMatch1.3.1
ORapplesafariMatch1.3.2
ORapplesafariMatch1.3.2312.5
ORapplesafariMatch1.3.2312.6
ORapplesafariMatch2
ORapplesafariMatch2.0
ORapplesafariMatch2.0.0
ORapplesafariMatch2.0.1
ORapplesafariMatch2.0.2
ORapplesafariMatch2.0.3
ORapplesafariMatch2.0.3417.8
ORapplesafariMatch2.0.3417.9
ORapplesafariMatch2.0.3417.9.2
ORapplesafariMatch2.0.3417.9.3
ORapplesafariMatch2.0.4
ORapplesafariMatch3
ORapplesafariMatch3.0
ORapplesafariMatch3.0.0
ORapplesafariMatch3.0.0b
ORapplesafariMatch3.0.1
ORapplesafariMatch3.0.1b
ORapplesafariMatch3.0.2
ORapplesafariMatch3.0.2b
ORapplesafariMatch3.0.3
ORapplesafariMatch3.0.3b
ORapplesafariMatch3.0.4
ORapplesafariMatch3.0.4b
ORapplesafariMatch3.1.0
ORapplesafariMatch3.1.0b
ORapplesafariMatch3.1.1
ORapplesafariMatch3.1.2
ORapplesafariMatch3.2.0
ORapplesafariMatch3.2.1
ORapplesafariMatch3.2.2
ORapplesafariMatch4.1
ORapplesafariMatch4.1.1
ORapplesafariMatch4.1.2
ORapplesafariMatch5.0
ORapplesafariMatch5.0.1
ORapplesafariMatch5.0.2
ORapplesafariMatch5.0.3
ORapplesafariMatch5.0.4
microsoftwindows_7
ORmicrosoftwindows_vista
ORmicrosoftwindows_xpsp2
ORmicrosoftwindows_xpsp3
Related
nvd
nvd
CVE-2011-0214
2011-07-21 23:55:01
cvelist
cvelist
CVE-2011-0214
2022-10-03 16:15:19
prion
prion
Code injection
2011-07-21 23:55:00
openvas
openvas
Apple Safari Multiple Vulnerabilities - July 2011 (Mac OS X)
2011-08-12 00:00:00
Apple Safari Multiple Vulnerabilities (Jul 2011)
2011-07-27 00:00:00
Apple Safari Multiple Vulnerabilities - July 2011
2011-07-27 00:00:00
securityvulns
securityvulns
WebKit / Apple Safari / Google Chrome multiple security vulnerabilities
2011-08-01 00:00:00
APPLE-SA-2011-07-20-1 Safari 5.1 and Safari 5.0.6
2011-07-22 00:00:00
nessus
nessus
Safari < 5.1 Multiple Vulnerabilities
2011-07-21 00:00:00
Mac OS X : Apple Safari < 5.1 / 5.0.6
2011-07-21 00:00:00
7.8 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
35.0%
Related for CVE-2011-0214