Search for vulnerabilities
Vulnerability details: VCID-d5n3-6bk2-aaag
Vulnerability ID VCID-d5n3-6bk2-aaag
Aliases CVE-2011-3207
VC-OPENSSL-20110906-CVE-2011-3207
Summary Under certain circumstances OpenSSL's internal certificate verification routines can incorrectly accept a CRL whose nextUpdate field is in the past. Applications are only affected by the CRL checking vulnerability if they enable OpenSSL's internal CRL checking which is off by default. Applications which use their own custom CRL checking (such as Apache) are not affected.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-264 Permissions, Privileges, and Access Controls
System Score Found at
generic_textual MODERATE http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html
rhas Moderate https://access.redhat.com/errata/RHSA-2011:1409
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01324 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01401 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01401 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01401 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.01401 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.0231 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
epss 0.05782 https://api.first.org/data/v1/epss?cve=CVE-2011-3207
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2011-3207
generic_textual MODERATE http://support.apple.com/kb/HT5784
Reference id Reference type URL
http://cvs.openssl.org/chngview?cn=21349
http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065712.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065744.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-November/092905.html
http://marc.info/?l=bugtraq&m=133226187115472&w=2
http://openssl.org/news/secadv_20110906.txt
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3207.json
https://api.first.org/data/v1/epss?cve=CVE-2011-3207
https://bugzilla.redhat.com/show_bug.cgi?id=736087
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3207
http://secunia.com/advisories/45956
http://secunia.com/advisories/57353
http://support.apple.com/kb/HT5784
https://www.openssl.org/news/secadv/20110906.txt
http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004564
http://www.mandriva.com/security/advisories?name=MDVSA-2011:137
http://www.redhat.com/support/errata/RHSA-2011-1409.html
http://www.securitytracker.com/id?1026012
cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:*
CVE-2011-3207 https://nvd.nist.gov/vuln/detail/CVE-2011-3207
GLSA-201110-01 https://security.gentoo.org/glsa/201110-01
RHSA-2011:1409 https://access.redhat.com/errata/RHSA-2011:1409
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2011-3207
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.86392
EPSS Score 0.01324
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.