CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4566

mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting in the directory context, which allows remote attackers to bypass intended access restrictions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.7%

CVSS Severity

CVSS v2 Score 4.0

References

Products affected by CVE-2013-4566

Mod Nss Project » Mod Nss » Version: 1.0

cpe:2.3:a:mod_nss_project:mod_nss:1.0
Mod Nss Project » Mod Nss » Version: 1.0.2

cpe:2.3:a:mod_nss_project:mod_nss:1.0.2
Mod Nss Project » Mod Nss » Version: 1.0.3

cpe:2.3:a:mod_nss_project:mod_nss:1.0.3
Mod Nss Project » Mod Nss » Version: 1.0.4

cpe:2.3:a:mod_nss_project:mod_nss:1.0.4
Mod Nss Project » Mod Nss » Version: 1.0.5

cpe:2.3:a:mod_nss_project:mod_nss:1.0.5
Mod Nss Project » Mod Nss » Version: 1.0.6

cpe:2.3:a:mod_nss_project:mod_nss:1.0.6
Mod Nss Project » Mod Nss » Version: 1.0.7

cpe:2.3:a:mod_nss_project:mod_nss:1.0.7
Mod Nss Project » Mod Nss » Version: 1.0.8

cpe:2.3:a:mod_nss_project:mod_nss:1.0.8
Redhat » Enterprise Linux » Version: 5

cpe:2.3:o:redhat:enterprise_linux:5
Redhat » Enterprise Linux » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4566

Products

Pricing

Contact Us