CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-4973

Authentication bypass vulnerability in mod_nss 1.0.8 allows remote attackers to assume the identity of a valid user by using their certificate and entering 'password' as the password.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.0%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://bugzilla.redhat.com/show_bug.cgi?id=1017197
https://www.redhat.com/archives/mod_nss-list/2011-May/msg00001.html
https://bugzilla.redhat.com/show_bug.cgi?id=1017197
https://www.redhat.com/archives/mod_nss-list/2011-May/msg00001.html

Products affected by CVE-2011-4973

Mod Nss Project » Mod Nss » Version: 1.0.8

cpe:2.3:a:mod_nss_project:mod_nss:1.0.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4973

Products

Pricing

Contact Us