CVE-2019-0215

In Apache HTTP Server 2.4 releases 2.4.37 and 2.4.38, a bug in mod_ssl when using per-location client certificate verification with TLSv1.3 allowed a client to bypass configured access control restrictions.

We have discovered 136,064 live websites that are affected by CVE-2019-0215.

Run a Free Instant Scan



Affected Software

Product  Apache
Category Web Servers
Vulnerable Domains136,064 live websites (4.80% of Apache install base)
Vulnerable Versions
  • from 2.4.37 through 2.4.37
  • from 2.4.38 through 2.4.38
Vulnerable Versions Count2 versions ( 1.68% of all versions)



Details

  • Published - Apr 9, 2019
  • Updated - Aug 4, 2024

Website Distribution by Country

Number of websites using CVE-2019-0215
United States34,458 websites


Japan15,580 websites
Germany11,680 websites
France10,889 websites
GB6,660 websites
Russia5,727 websites
Italy4,846 websites
Czech Republic4,058 websites
Norway3,117 websites

Website Distribution by TLD

Number of websites using CVE-2019-0215
.com47,178 websites
.jp10,789 websites
.de6,551 websites
.org6,012 websites
.ru5,205 websites
.net4,471 websites
.it4,253 websites
.edu3,941 websites
.co.uk3,701 websites
.fr3,503 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2019-0215

Top websites that are affected by CVE-2019-0215. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*******.com Singapore***
*************.***.****.****.************.net United States***
***.*********.com Singapore*,***
*****.*******.com Singapore*,***
*******.org United States*,***
*****.com Canada*,***
******.*****.gov United States*,***
***.**.uk GB*,***
***********************.com United States*,***
***.***.org United States*,***
See full domain list

FAQ

A total of 136,064 websites have been identified as vulnerable to CVE-2019-0215, based on global website indexing conducted by WebTechSurvey.
The Apache is affected by the CVE-2019-0215 vulnerability.
Apache versions up to and including 2.4.38 are vulnerable to CVE-2019-0215.

References