[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2013-4508":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":152,"aliases":162,"duplicate_of":9,"upstream":163,"downstream":164,"duplicates":175,"related":176,"reserved_at":9,"published_at":179,"modified_at":180,"state":181,"summary":182,"references_raw":190,"kevs":236,"epss":237,"epss_history":240,"metrics":496,"affected":507},"CVE-2013-4508","lighttpd before 1.4.34, when SNI is enabled, configures weak SSL ciphers, which makes it easier for remote attackers to hijack sessions by inserting packets into the client-server data stream or obtain sensitive information by sniffing the network.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-326","Inadequate Encryption Strength","The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.","weakness","Draft","Class",[19,144,148],{"id":20,"name":21,"techniques":22},"CAPEC-112","Brute Force",[23],{"id":24,"name":21,"tactics":25,"countermeasures":29},"T1110",[26],{"id":27,"name":28},"TA0031","Credential Access",[30,35,39,43,47,51,55,59,63,67,71,75,79,83,88,92,97,102,106,110,114,118,122,126,130,135,140],{"id":31,"name":32,"tactic":33},"D3-CCSA","Credential Compromise Scope Analysis",{"name":34},"Detect",{"id":36,"name":37,"tactic":38},"D3-AEM","Application Exception Monitoring",{"name":34},{"id":40,"name":41,"tactic":42},"D3-OPM","Operational Process Monitoring",{"name":34},{"id":44,"name":45,"tactic":46},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":34},{"id":48,"name":49,"tactic":50},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":34},{"id":52,"name":53,"tactic":54},"D3-CSPP","Client-server Payload Profiling",{"name":34},{"id":56,"name":57,"tactic":58},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":34},{"id":60,"name":61,"tactic":62},"D3-NTSA","Network Traffic Signature Analysis",{"name":34},{"id":64,"name":65,"tactic":66},"D3-APCA","Application Protocol Command Analysis",{"name":34},{"id":68,"name":69,"tactic":70},"D3-NTCD","Network Traffic Community Deviation",{"name":34},{"id":72,"name":73,"tactic":74},"D3-RTSD","Remote Terminal Session Detection",{"name":34},{"id":76,"name":77,"tactic":78},"D3-CAA","Connection Attempt Analysis",{"name":34},{"id":80,"name":81,"tactic":82},"D3-ANAA","Administrative Network Activity Analysis",{"name":34},{"id":84,"name":85,"tactic":86},"D3-CR","Credential Revocation",{"name":87},"Evict",{"id":89,"name":90,"tactic":91},"D3-ANCI","Authentication Cache Invalidation",{"name":87},{"id":93,"name":94,"tactic":95},"D3-DUC","Decoy User Credential",{"name":96},"Deceive",{"id":98,"name":99,"tactic":100},"D3-CH","Credential Hardening",{"name":101},"Harden",{"id":103,"name":104,"tactic":105},"D3-MFA","Multi-factor Authentication",{"name":101},{"id":107,"name":108,"tactic":109},"D3-CRO","Credential Rotation",{"name":101},{"id":111,"name":112,"tactic":113},"D3-PR","Password Rotation",{"name":101},{"id":115,"name":116,"tactic":117},"D3-PWA","Password Authentication",{"name":101},{"id":119,"name":120,"tactic":121},"D3-CDP","Change Default Password",{"name":101},{"id":123,"name":124,"tactic":125},"D3-SPP","Strong Password Policy",{"name":101},{"id":127,"name":128,"tactic":129},"D3-OTP","One-time Password",{"name":101},{"id":131,"name":132,"tactic":133},"D3-RIC","Reissue Credential",{"name":134},"Restore",{"id":136,"name":137,"tactic":138},"D3-CTS","Credential Transmission Scoping",{"name":139},"Isolate",{"id":141,"name":142,"tactic":143},"D3-NTF","Network Traffic Filtering",{"name":139},{"id":145,"name":146,"techniques":147},"CAPEC-192","Protocol Analysis",[],{"id":149,"name":150,"techniques":151},"CAPEC-20","Encryption Brute Forcing",[],[153],{"_key":154,"name":155,"source":156,"url":157,"maturity":158,"reliability_score":159,"verified":160,"type":9,"platforms":161,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_4F47CA7C97778B01","Exploit Reference (download.lighttpd.net)","reference","http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2013_01.txt","unknown",0.2,false,[],[],[],[165,167,169,171,173],{"_key":166},"UBUNTU-CVE-2013-4508",{"_key":168},"OPENSUSE-SU-2024:10402-1",{"_key":170},"DSA-2795-1",{"_key":172},"MGASA-2013-0334",{"_key":174},"DEBIAN-CVE-2013-4508",[],[177,178],{"_key":168},{"_key":172},"2013-11-08T02:00:00.000Z","2024-08-06T16:45:15.220Z","Modified",{"cisa_kev":160,"cisa_ransomware":160,"cisa_vendor":9,"epss_severity":183,"epss_score":184,"severity":185,"severity_score":186,"severity_version":187,"severity_source":188,"severity_vector":189,"severity_status":181},"low",0.00834,"high",7.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",[191,199,206,212,216,221,226,231],{"url":157,"sources":192,"tags":194},[193,188],"cve.org",[195,196,197,198],"X Refsource CONFIRM","Exploit","Mitigation","Vendor Advisory",{"url":200,"sources":201,"tags":202},"http://openwall.com/lists/oss-security/2013/11/04/19",[193,188],[203,204,205],"Mailing List","X Refsource MLIST","Third Party Advisory",{"url":207,"sources":208,"tags":209},"http://marc.info/?l=bugtraq&m=141576815022399&w=2",[193,188],[198,210,211,205],"X Refsource HP","Issue Tracking",{"url":213,"sources":214,"tags":215},"http://redmine.lighttpd.net/issues/2525",[193,188],[195,211,198],{"url":217,"sources":218,"tags":219},"http://lists.opensuse.org/opensuse-updates/2014-01/msg00049.html",[193,188],[198,220,203,205],"X Refsource SUSE",{"url":222,"sources":223,"tags":224},"https://www.debian.org/security/2013/dsa-2795",[193,188],[198,225,205],"X Refsource DEBIAN",{"url":227,"sources":228,"tags":229},"http://redmine.lighttpd.net/projects/lighttpd/repository/revisions/2913/diff/",[193,188],[195,230],"Broken Link",{"url":232,"sources":233,"tags":234},"http://jvn.jp/en/jp/JVN37417423/index.html",[193,188],[205,235],"X Refsource JVN",[],{"date":238,"score":184,"percentile":239},"2026-06-04",0.74974,[241,245,248,251,254,257,260,263,266,269,272,275,278,281,284,287,290,293,296,298,300,302,304,306,308,311,314,317,321,324,327,330,333,336,339,341,344,347,350,353,356,359,361,364,367,369,371,374,377,379,382,385,388,390,394,397,399,402,405,408,411,414,417,420,422,425,428,430,433,435,437,440,443,446,449,452,455,458,461,463,466,469,472,475,478,481,484,487,490,493],{"date":242,"score":243,"percentile":244},"2025-11-04",0.02907,0.85851,{"date":246,"score":243,"percentile":247},"2025-11-05",0.85855,{"date":249,"score":243,"percentile":250},"2025-11-06",0.85858,{"date":252,"score":243,"percentile":253},"2025-11-07",0.85867,{"date":255,"score":243,"percentile":256},"2025-11-08",0.8587,{"date":258,"score":243,"percentile":259},"2025-11-09",0.85865,{"date":261,"score":243,"percentile":262},"2025-11-10",0.85866,{"date":264,"score":243,"percentile":265},"2025-11-11",0.85869,{"date":267,"score":243,"percentile":268},"2025-11-12",0.85881,{"date":270,"score":243,"percentile":271},"2025-11-13",0.85887,{"date":273,"score":243,"percentile":274},"2025-11-14",0.8589,{"date":276,"score":243,"percentile":277},"2025-11-15",0.85882,{"date":279,"score":243,"percentile":280},"2025-11-16",0.8588,{"date":282,"score":243,"percentile":283},"2025-11-17",0.85864,{"date":285,"score":243,"percentile":286},"2025-11-18",0.85113,{"date":288,"score":243,"percentile":289},"2025-11-19",0.85114,{"date":291,"score":243,"percentile":292},"2025-11-20",0.85117,{"date":294,"score":243,"percentile":295},"2025-11-21",0.85875,{"date":297,"score":243,"percentile":265},"2025-11-22",{"date":299,"score":243,"percentile":283},"2025-11-23",{"date":301,"score":243,"percentile":259},"2025-11-24",{"date":303,"score":243,"percentile":259},"2025-11-25",{"date":305,"score":243,"percentile":259},"2025-11-26",{"date":307,"score":243,"percentile":262},"2025-11-27",{"date":309,"score":243,"percentile":310},"2025-11-28",0.85844,{"date":312,"score":243,"percentile":313},"2025-11-29",0.85914,{"date":315,"score":243,"percentile":316},"2025-11-30",0.85915,{"date":318,"score":319,"percentile":320},"2025-12-01",0.01027,0.76733,{"date":322,"score":319,"percentile":323},"2025-12-02",0.76745,{"date":325,"score":319,"percentile":326},"2025-12-03",0.76735,{"date":328,"score":243,"percentile":329},"2025-12-04",0.85912,{"date":331,"score":243,"percentile":332},"2025-12-05",0.85916,{"date":334,"score":243,"percentile":335},"2025-12-06",0.85911,{"date":337,"score":243,"percentile":338},"2025-12-07",0.85901,{"date":340,"score":243,"percentile":338},"2025-12-08",{"date":342,"score":243,"percentile":343},"2025-12-09",0.85907,{"date":345,"score":243,"percentile":346},"2025-12-10",0.85927,{"date":348,"score":243,"percentile":349},"2025-12-11",0.85933,{"date":351,"score":243,"percentile":352},"2025-12-12",0.85934,{"date":354,"score":243,"percentile":355},"2025-12-13",0.85929,{"date":357,"score":243,"percentile":358},"2025-12-14",0.8592,{"date":360,"score":243,"percentile":313},"2025-12-15",{"date":362,"score":243,"percentile":363},"2025-12-16",0.85919,{"date":365,"score":243,"percentile":366},"2025-12-17",0.85924,{"date":368,"score":243,"percentile":355},"2025-12-18",{"date":370,"score":243,"percentile":349},"2025-12-19",{"date":372,"score":243,"percentile":373},"2025-12-20",0.8593,{"date":375,"score":243,"percentile":376},"2025-12-21",0.85935,{"date":378,"score":243,"percentile":346},"2025-12-22",{"date":380,"score":243,"percentile":381},"2025-12-23",0.85932,{"date":383,"score":243,"percentile":384},"2025-12-24",0.85937,{"date":386,"score":243,"percentile":387},"2025-12-25",0.8595,{"date":389,"score":243,"percentile":387},"2025-12-26",{"date":391,"score":392,"percentile":393},"2025-12-27",0.02347,0.84514,{"date":395,"score":243,"percentile":396},"2025-12-28",0.85943,{"date":398,"score":243,"percentile":384},"2025-12-29",{"date":400,"score":243,"percentile":401},"2025-12-30",0.85945,{"date":403,"score":243,"percentile":404},"2025-12-31",0.85954,{"date":406,"score":319,"percentile":407},"2026-01-01",0.76903,{"date":409,"score":319,"percentile":410},"2026-01-02",0.76906,{"date":412,"score":319,"percentile":413},"2026-01-03",0.76905,{"date":415,"score":243,"percentile":416},"2026-01-04",0.85953,{"date":418,"score":243,"percentile":419},"2026-01-05",0.85952,{"date":421,"score":243,"percentile":404},"2026-01-06",{"date":423,"score":243,"percentile":424},"2026-01-07",0.85955,{"date":426,"score":243,"percentile":427},"2026-01-08",0.85964,{"date":429,"score":243,"percentile":427},"2026-01-09",{"date":431,"score":243,"percentile":432},"2026-01-10",0.8596,{"date":434,"score":243,"percentile":424},"2026-01-11",{"date":436,"score":243,"percentile":419},"2026-01-12",{"date":438,"score":243,"percentile":439},"2026-01-13",0.85947,{"date":441,"score":243,"percentile":442},"2026-01-14",0.85962,{"date":444,"score":243,"percentile":445},"2026-01-15",0.85961,{"date":447,"score":243,"percentile":448},"2026-01-16",0.85968,{"date":450,"score":243,"percentile":451},"2026-01-17",0.85971,{"date":453,"score":243,"percentile":454},"2026-01-18",0.8597,{"date":456,"score":243,"percentile":457},"2026-01-19",0.85966,{"date":459,"score":243,"percentile":460},"2026-01-20",0.85965,{"date":462,"score":243,"percentile":454},"2026-01-21",{"date":464,"score":243,"percentile":465},"2026-01-22",0.85974,{"date":467,"score":243,"percentile":468},"2026-01-23",0.85987,{"date":470,"score":243,"percentile":471},"2026-01-24",0.85995,{"date":473,"score":243,"percentile":474},"2026-01-25",0.8599,{"date":476,"score":243,"percentile":477},"2026-01-26",0.85988,{"date":479,"score":243,"percentile":480},"2026-01-27",0.85994,{"date":482,"score":243,"percentile":483},"2026-01-28",0.86,{"date":485,"score":243,"percentile":486},"2026-01-29",0.86002,{"date":488,"score":243,"percentile":489},"2026-01-30",0.86009,{"date":491,"score":243,"percentile":492},"2026-01-31",0.86007,{"date":494,"score":319,"percentile":495},"2026-02-01",0.76976,[497],{"source":188,"cvss_v2_0":498,"cvss_v3_0":9,"cvss_v3_1":503,"cvss_v4_0":9},{"baseScore":499,"baseSeverity":9,"vectorString":500,"impactScore":501,"exploitabilityScore":502},4.3,"AV:N/AC:M/Au:N/C:P/I:N/A:N",2.9,8.6,{"baseScore":186,"baseSeverity":504,"vectorString":189,"impactScore":505,"exploitabilityScore":506},"HIGH",6,10,[508,521,531],{"ecosystem":9,"name":509,"vendor":510,"product":511,"cpe_part":512,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":513},"debian linux","debian","debian_linux","o",[514,517,519],{"version":515,"is_range":160,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0","cpe",{"version":518,"is_range":160,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"version":520,"is_range":160,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":522,"vendor":522,"product":522,"cpe_part":523,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":524},"lighttpd","a",[525],{"version":526,"is_range":527,"range_type":516,"version_start":528,"version_start_type":529,"version_end":530,"version_end_type":529,"fixed_in":9},"gte1.4.24_lte1.4.33",true,"1.4.24","including","1.4.33",{"ecosystem":9,"name":532,"vendor":532,"product":532,"cpe_part":512,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":533},"opensuse",[534,536,538],{"version":535,"is_range":160,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.2",{"version":537,"is_range":160,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.3",{"version":539,"is_range":160,"range_type":516,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"13.1"]