← CVECheck
HomeVulnerabilities

CVE-2003-0192 — MEDIUM severity vulnerability (Apache 2 before 2.0.47, and certain versions of mod_ssl for)

Apache 2 before 2.0.47, and certain versions of mod_ssl for Apache 1.3, do not properly handle "certain sequences of per-directory renegotiations and the SSLCipherSuite directive being used to upgrade from a weak ciphersuite to a strong one," which could cause Apache to use the weak ciphersuite.

CVE IDCVE-2003-0192
SeverityMEDIUM
CVSS score6.4
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2003-08-18
Last modified2026-04-16
DescriptionApache 2 before 2.0.47, and certain versions of mod_ssl for Apache 1.3, do not properly handle "certain sequences of per-directory renegotiations and the SSLCipherSuite directive being used to upgrade from a weak ciphersuite to a strong one," which could cause Apache to use the weak ciphersuite.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →