Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-3wbg-bxvj-1kca
Vulnerability ID VCID-3wbg-bxvj-1kca
Aliases CVE-2004-0885
Summary An issue has been discovered in the mod_ssl module when configured to use the "SSLCipherSuite" directive in directory or location context. If a particular location context has been configured to require a specific set of cipher suites, then a client will be able to access that location using any cipher suite allowed by the virtual host configuration.
Status Published
Exploitability 0.5
Weighted Severity 4.8
Risk 2.4
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.06144 https://api.first.org/data/v1/epss?cve=CVE-2004-0885
epss 0.06144 https://api.first.org/data/v1/epss?cve=CVE-2004-0885
epss 0.06144 https://api.first.org/data/v1/epss?cve=CVE-2004-0885
epss 0.06144 https://api.first.org/data/v1/epss?cve=CVE-2004-0885
epss 0.06144 https://api.first.org/data/v1/epss?cve=CVE-2004-0885
epss 0.06144 https://api.first.org/data/v1/epss?cve=CVE-2004-0885
epss 0.06144 https://api.first.org/data/v1/epss?cve=CVE-2004-0885
epss 0.06144 https://api.first.org/data/v1/epss?cve=CVE-2004-0885
apache_httpd moderate https://httpd.apache.org/security/json/CVE-2004-0885.json
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0885.json
https://api.first.org/data/v1/epss?cve=CVE-2004-0885
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0885
430637 https://bugzilla.redhat.com/show_bug.cgi?id=430637
CVE-2004-0885 https://httpd.apache.org/security/json/CVE-2004-0885.json
RHSA-2004:562 https://access.redhat.com/errata/RHSA-2004:562
RHSA-2004:600 https://access.redhat.com/errata/RHSA-2004:600
RHSA-2004:653 https://access.redhat.com/errata/RHSA-2004:653
RHSA-2005:816 https://access.redhat.com/errata/RHSA-2005:816
RHSA-2008:0523 https://access.redhat.com/errata/RHSA-2008:0523
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.90769
EPSS Score 0.06144
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T12:36:12.937501+00:00 Apache HTTPD Importer Import https://httpd.apache.org/security/json/CVE-2004-0885.json 38.0.0