CVE-2011-3207

crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past.

We have discovered 28,185 live websites that are affected by CVE-2011-3207.

Test my site



Affected Software

Product  OpenSSL
Category Web Server Extensions
Vulnerable Domains28,185 live websites (4.20% of OpenSSL install base)
Vulnerable Versions
  • from 0 before 1
Vulnerable Versions Count8 versions ( 20.00% of all versions)



Details

  • Published - Sep 22, 2011
  • Updated - Aug 6, 2024

CVE-2011-3207 usage by Country

United States5,930 websites


Germany3,003 websites
Japan1,853 websites
France1,718 websites
Czech Republic1,713 websites
Russia1,518 websites
Austria1,187 websites
Korea, South1,056 websites
China808 websites

CVE-2011-3207 usage by TLD

.com9,470 websites
.de2,141 websites
.net1,969 websites
.cz1,453 websites
.org1,331 websites
.ru1,303 websites
.at963 websites
.jp682 websites
.fr489 websites
.it485 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2011-3207

Top websites that are affected by CVE-2011-3207. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
**********.*****.de Germany*,***
******.com Taiwan**,***
*********.com United States**,***
******.*****.org United States**,***
******.com United States**,***
*************.ru Russia**,***
********.com France**,***
********.*****.org United States**,***
******.org United States**,***
****.*******.ca Canada**,***
See full domain list

FAQ

A total of 28,185 websites have been identified as vulnerable to CVE-2011-3207, discovered through global website indexing conducted by WebTechSurvey.
OpenSSL is susceptible to CVE-2011-3207 vulnerability.
OpenSSL versions before 1 are vulnerable to CVE-2011-3207.
Version 1 of OpenSSL addresses the CVE-2011-3207 security vulnerability.

References