Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 6:17 a.m.3 views

SUSE CVE-2005-2700

sslenginekernel.c in modssl before 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote attackers to bypass intended access restrictions...

10CVSS7AI score0.15081EPSS
Exploits0References9
SUSE CVE
SUSE CVEadded 2023/02/15 4:19 a.m.1 views

SUSE CVE-2019-0215

In Apache HTTP Server 2.4 releases 2.4.37 and 2.4.38, a bug in modssl when using per-location client certificate verification with TLSv1.3 allowed a client to bypass configured access control restrictions...

7.5CVSS8.8AI score0.05872EPSS
Exploits0References4
OSV
OSVadded 2019/04/08 8:29 p.m.1 views

ALPINE-CVE-2019-0215

In Apache HTTP Server 2.4 releases 2.4.37 and 2.4.38, a bug in modssl when using per-location client certificate verification with TLSv1.3 allowed a client to bypass configured access control restrictions...

7.5CVSS6.9AI score0.05872EPSS
Exploits0References1
OSV
OSVadded 2019/04/08 8:29 p.m.1 views

DEBIAN-CVE-2019-0215

In Apache HTTP Server 2.4 releases 2.4.37 and 2.4.38, a bug in modssl when using per-location client certificate verification with TLSv1.3 allowed a client to bypass configured access control restrictions...

7.5CVSS8AI score0.05872EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2019/04/08 8:29 p.m.53 views

CVE-2019-0215

In Apache HTTP Server 2.4 releases 2.4.37 and 2.4.38, a bug in modssl when using per-location client certificate verification with TLSv1.3 allowed a client to bypass configured access control restrictions...

7.5CVSS7.3AI score0.05872EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2019/01/23 12:0 a.m.5 views

PT-2019-3931 · Apache +3 · Apache Http Server +3

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server versions 2.4.37 through 2.4.38 Description: The issue is related to a flaw in the mod ssl component of the Apache HTTP Server, specifically concerning inadequate access control. This flaw can be exploited by a remote attack...

9CVSS6.7AI score0.89568EPSS
Exploits9References83
RedHat Linux
RedHat Linuxadded 2005/12/19 5:29 p.m.2 views

security flaw

sslenginekernel.c in modssl before 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote attackers to bypass intended access restrictions...

10CVSS6.9AI score0.15081EPSS
Exploits0References4
OSV
OSVadded 2005/09/06 11:3 p.m.1 views

DEBIAN-CVE-2005-2700

sslenginekernel.c in modssl before 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote attackers to bypass intended access restrictions...

10CVSS6.4AI score0.15081EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2005/09/06 1:37 p.m.2 views

security flaw

sslenginekernel.c in modssl before 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote attackers to bypass intended access restrictions...

10CVSS6.9AI score0.15081EPSS
Exploits0References4
Rows per page
Query Builder