Description
The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the "SSLCipherSuite" directive in directory or location context, allows remote clients to bypass intended restrictions by using any cipher suite that is allowed by the virtual host configuration.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2023-24950 Vulnerability (CVE-2023-24950)
WordPress Plugin Appointment Booking Calendar Multiple Vulnerabilities (1.1.24)
WordPress Plugin NEX-Forms Lite-WordPress Contact Form builder Cross-Site Scripting (2.1.0)
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-5106)
WordPress Plugin WP Symposium 'get_profile_avatar.php' SQL Injection (0.64)