Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2013-4073

🗓️ 18 Aug 2013 01:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 164 Views

OpenSSL::SSL.verify_certificate_identity function in lib/openssl/ssl.rb in Ruby 1.8 before 1.8.7-p374, 1.9 before 1.9.3-p448, and 2.0 before 2.0.0-p247 allows man-in-the-middle attacks via crafted SSL certificates

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Tenable Nessus		Mac OS X < 10.9.2 Multiple Vulnerabilities
26 Feb 201400:00
nessus
Tenable Nessus		CentOS 5 / 6 : ruby (CESA-2013:1090)
18 Jul 201300:00
nessus
Tenable Nessus		Debian DSA-2738-1 : ruby1.9.1 - several vulnerabilities
20 Aug 201300:00
nessus
Tenable Nessus		Debian DSA-2809-1 : ruby1.8 - several vulnerabilities
5 Dec 201300:00
nessus
Tenable Nessus		EulerOS Virtualization 3.0.1.0 : ruby (EulerOS-SA-2019-1428)
14 May 201900:00
nessus
Tenable Nessus		Fedora 17 : ruby-1.9.3.448-31.fc17 (2013-12062)
12 Jul 201300:00
nessus
Tenable Nessus		Fedora 18 : ruby-1.9.3.448-31.fc18 (2013-12123)
12 Jul 201300:00
nessus
Tenable Nessus		Fedora 19 : ruby-2.0.0.247-14.fc19 (2013-12663)
16 Jul 201300:00
nessus
Tenable Nessus		FreeBSD : ruby -- Hostname check bypassing vulnerability in SSL client (ebd877b9-7ef4-4375-b1fd-c67780581898)
12 Jul 201300:00
nessus
Tenable Nessus		Mac OS X 10.x < 10.9 Multiple Vulnerabilities (BEAST)
23 Oct 201300:00
nessus
Rows per page
NVD
Node
ruby-langrubyMatch1.8.6-26
OR
ruby-langrubyMatch1.8.7
OR
ruby-langrubyMatch1.8.7p160
OR
ruby-langrubyMatch1.8.7p17
OR
ruby-langrubyMatch1.8.7p173
OR
ruby-langrubyMatch1.8.7p174
OR
ruby-langrubyMatch1.8.7p22
OR
ruby-langrubyMatch1.8.7p248
OR
ruby-langrubyMatch1.8.7p249
OR
ruby-langrubyMatch1.8.7p299
OR
ruby-langrubyMatch1.8.7p301
OR
ruby-langrubyMatch1.8.7p302
OR
ruby-langrubyMatch1.8.7p330
OR
ruby-langrubyMatch1.8.7p334
OR
ruby-langrubyMatch1.8.7p352
OR
ruby-langrubyMatch1.8.7p357
OR
ruby-langrubyMatch1.8.7p358
OR
ruby-langrubyMatch1.8.7p370
OR
ruby-langrubyMatch1.8.7p371
OR
ruby-langrubyMatch1.8.7p373
OR
ruby-langrubyMatch1.8.7p71
OR
ruby-langrubyMatch1.8.7p72
OR
ruby-langrubyMatch1.8.7preview1
OR
ruby-langrubyMatch1.8.7preview2
OR
ruby-langrubyMatch1.8.7preview3
OR
ruby-langrubyMatch1.8.7preview4
OR
ruby-langrubyMatch1.9.3
OR
ruby-langrubyMatch1.9.3p0
OR
ruby-langrubyMatch1.9.3p125
OR
ruby-langrubyMatch1.9.3p194
OR
ruby-langrubyMatch1.9.3p286
OR
ruby-langrubyMatch1.9.3p383
OR
ruby-langrubyMatch1.9.3p385
OR
ruby-langrubyMatch1.9.3p392
OR
ruby-langrubyMatch1.9.3p426
OR
ruby-langrubyMatch1.9.3p429
OR
ruby-langrubyMatch2.0.0p0
OR
ruby-langrubyMatch2.0.0p195
OR
ruby-langrubyMatch2.0.0preview1
OR
ruby-langrubyMatch2.0.0preview2
OR
ruby-langrubyMatch2.0.0rc1
OR
ruby-langrubyMatch2.0.0rc2

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
29 Apr 2026 01:13Current
6.1Medium risk
Vulners AI Score6.1
CVSS 26.8
EPSS0.02834
CWE-310
cve-2013-4073opensslsslrubyx.509 certificateman-in-the-middle attacknvd
164