Lucene search
HistoryDec 12, 2013 - 6:55 p.m.
CVE-2013-4566
mod_nss
cve-2013-4566
security vulnerability
access restrictions
6.3 Medium
AI Score
Confidence
Low
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.007 Low
EPSS
Percentile
80.1%
mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting in the directory context, which allows remote attackers to bypass intended access restrictions.
Related
openvas
openvas
RedHat Update for mod_nss RHSA-2013:1779-01
2013-12-04 00:00:00
CentOS Update for mod_nss CESA-2013:1779 centos6
2013-12-04 00:00:00
CentOS Update for mod_nss CESA-2013:1779 centos5
2013-12-04 00:00:00
oraclelinux
oraclelinux
mod_nss security update
2013-12-03 00:00:00
nessus
nessus
openSUSE Security Update : apache2-mod_nss (openSUSE-SU-2013:1956-1)
2014-06-13 00:00:00
Fedora 19 : mod_nss-1.0.8-27.fc19 (2013-22787)
2013-12-13 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: mod_nss-1.0.8-27.fc18
2013-12-13 05:05:02
[SECURITY] Fedora 20 Update: mod_nss-1.0.8-28.fc20
2013-12-14 03:03:31
[SECURITY] Fedora 19 Update: mod_nss-1.0.8-27.fc19
2013-12-13 05:03:58
amazon
amazon
Medium: mod_nss
2013-12-03 13:00:00
Medium: mod24_nss
2013-12-03 13:00:00
prion
prion
Design/Logic Flaw
2013-12-12 18:55:00
ubuntucve
ubuntucve
CVE-2013-4566
2013-12-12 00:00:00
redhat
redhat
(RHSA-2013:1779) Moderate: mod_nss security update
2013-12-03 00:00:00
debiancve
debiancve
CVE-2013-4566
2013-12-12 18:55:00
veracode
veracode
Authorization Bypass
2019-01-15 08:52:22
centos
centos
mod_nss security update
2013-12-03 22:51:46
mageia
mageia
Updated apache-mod_nss package fixes CVE-2013-4566
2013-12-20 21:27:18
6.3 Medium
AI Score
Confidence
Low
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.007 Low
EPSS
Percentile
80.1%
Related for CVE-2013-4566