Search for vulnerabilities
Vulnerability details: VCID-fzyw-j2ev-aaas
Vulnerability ID VCID-fzyw-j2ev-aaas
Aliases CVE-2011-3639
Summary The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x before 2.2.18, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers by using the HTTP/0.9 protocol with a malformed URI containing an initial @ (at sign) character. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.
Status Published
Exploitability 2.0
Weighted Severity 6.2
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-20 Improper Input Validation
System Score Found at
rhas Moderate https://access.redhat.com/errata/RHSA-2012:0128
rhas Moderate https://access.redhat.com/errata/RHSA-2012:0323
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.01319 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.15953 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.17844 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.17844 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.17844 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.17844 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.17844 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
epss 0.22825 https://api.first.org/data/v1/epss?cve=CVE-2011-3639
cvssv2 4.3 https://nvd.nist.gov/vuln/detail/CVE-2011-3639
Reference id Reference type URL
http://rhn.redhat.com/errata/RHSA-2012-0128.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3639.json
https://api.first.org/data/v1/epss?cve=CVE-2011-3639
https://bugzilla.redhat.com/show_bug.cgi?id=752080
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3639
http://svn.apache.org/viewvc?view=revision&revision=1188745
http://www.debian.org/security/2012/dsa-2405
cpe:2.3:a:apache:http_server:2.0.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.12:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.13:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.13:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.14:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.14:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.15:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.15:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.16:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.16:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.17:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.17:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.18:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.18:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.19:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.19:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.20:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.20:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.21:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.21:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.22:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.22:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.23:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.23:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.24:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.24:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.25:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.25:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.26:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.26:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.27:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.27:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.28:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.28:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.29:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.29:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.30:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.30:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.31:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.31:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.32:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.32:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.33:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.33:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.34:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.34:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.35:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.35:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.36:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.36:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.37:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.37:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.38:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.38:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.39:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.39:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.40:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.40:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.41:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.41:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.42:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.42:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.43:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.43:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.44:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.44:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.45:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.45:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.46:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.46:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.47:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.47:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.48:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.48:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.49:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.49:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.50:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.50:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.51:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.51:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.52:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.52:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.53:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.53:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.54:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.54:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.55:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.55:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.56:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.56:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.57:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.57:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.58:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.58:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.59:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.59:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.61:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.61:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.0.63:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.0.63:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server2.0a1:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server2.0a1:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server2.0a2:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server2.0a2:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server2.0a3:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server2.0a3:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server2.0a4:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server2.0a4:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server2.0a5:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server2.0a5:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server2.0a6:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server2.0a6:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server2.0a7:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server2.0a7:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server2.0a8:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server2.0a8:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server2.0a9:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server2.0a9:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.12:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.13:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.13:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.14:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.14:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.15:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.15:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.16:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.16:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.17:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.17:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*
CVE-2011-3639 https://nvd.nist.gov/vuln/detail/CVE-2011-3639
CVE-2011-3639;OSVDB-77444 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/36663.txt
CVE-2011-3639;OSVDB-77444 Exploit https://www.securityfocus.com/bid/51869/info
RHSA-2012:0128 https://access.redhat.com/errata/RHSA-2012:0128
RHSA-2012:0323 https://access.redhat.com/errata/RHSA-2012:0323
Data source Exploit-DB
Date added Feb. 6, 2012
Description Apache 2.2.15 mod_proxy - Reverse Proxy Security Bypass
Ransomware campaign use Known
Source publication date Feb. 6, 2012
Exploit type remote
Platform linux
Source update date Jan. 31, 2017
Source URL https://www.securityfocus.com/bid/51869/info
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2011-3639
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.86371
EPSS Score 0.01319
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.