Security Advisory

CVE-2019-0215

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-04-08 19:25:45

Last updated 2024-08-04 17:44:15

Assigner apache

State PUBLISHED

Description

In Apache HTTP Server 2.4 releases 2.4.37 and 2.4.38, a bug in mod_ssl when using per-location client certificate verification with TLSv1.3 allowed a client to bypass configured access control restrictions.

← Browse all CVEs View on cve.org ↗