Search for vulnerabilities
Vulnerability details: VCID-2gy9-knuh-23et
Vulnerability ID VCID-2gy9-knuh-23et
Aliases CVE-2005-2700
Summary A flaw in the mod_ssl handling of the "SSLVerifyClient" directive. This flaw would occur if a virtual host has been configured using "SSLVerifyClient optional" and further a directive "SSLVerifyClient required" is set for a specific location. For servers configured in this fashion, an attacker may be able to access resources that should otherwise be protected, by not supplying a client certificate when connecting.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.0622 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.06708 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.06708 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.14542 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
epss 0.14542 https://api.first.org/data/v1/epss?cve=CVE-2005-2700
apache_httpd important https://httpd.apache.org/security/json/CVE-2005-2700.json
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2700.json
https://api.first.org/data/v1/epss?cve=CVE-2005-2700
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2700
1617741 https://bugzilla.redhat.com/show_bug.cgi?id=1617741
327210 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=327210
CVE-2005-2700 https://httpd.apache.org/security/json/CVE-2005-2700.json
RHSA-2005:608 https://access.redhat.com/errata/RHSA-2005:608
RHSA-2005:773 https://access.redhat.com/errata/RHSA-2005:773
RHSA-2005:816 https://access.redhat.com/errata/RHSA-2005:816
RHSA-2005:882 https://access.redhat.com/errata/RHSA-2005:882
USN-177-1 https://usn.ubuntu.com/177-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.90502
EPSS Score 0.0622
Published At Aug. 16, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:28:43.269972+00:00 Apache HTTPD Importer Import https://httpd.apache.org/security/json/CVE-2005-2700.json 37.0.0