{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-04T18:42:10.683","vulnerabilities":[{"cve":{"id":"CVE-2013-0013","sourceIdentifier":"secure@microsoft.com","published":"2013-01-09T18:09:40.540","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The SSL provider component in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle encrypted packets, which allows man-in-the-middle attackers to conduct SSLv2 downgrade attacks against (1) SSLv3 sessions or (2) TLS sessions by intercepting handshakes and injecting content, aka \"Microsoft SSL Version 3 and TLS Protocol Security Feature Bypass Vulnerability.\""},{"lang":"es","value":"El componente proveedor de SSL provider en Microsoft Windows Vista SP2, Windows Server 2008 Service Pack 2, R2, y R2 SP1, Windows 7 Gold y SP1, Windows 8, Windows Server 2012 y Windows RT no trata correctamente los paquetes cifrados, lo que permite a atacantes man-in-the-middle llevar a cabo ataques SSLv2 downgrade contra (1) sesiones SSLv3 o (2) sesiones TLS mediante la interceptación de handshakes y la inyección de contenido, también conocido como \"Microsoft SSL Version 3 and TLS Protocol Security Feature Bypass Vulnerability\".\r\n"}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:N","baseScore":5.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_7:*:*:x64:*:*:*:*:*","matchCriteriaId":"CE381783-027E-4B6D-B801-59873E5EA483"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_7:*:*:x86:*:*:*:*:*","matchCriteriaId":"A2C3594F-7C2C-4E2D-9BC5-F4F89B7BF4D5"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_7:*:sp1:x64:*:*:*:*:*","matchCriteriaId":"4FA15D65-7C32-4C7A-9915-746AB3F454EE"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_7:*:sp1:x86:*:*:*:*:*","matchCriteriaId":"976EFC05-9B37-4661-AD34-4FFDB5AB48E0"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_8:-:-:x64:*:*:*:*:*","matchCriteriaId":"DE8E7D74-0DCB-4633-B502-EDC2112229BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_8:-:-:x86:*:*:*:*:*","matchCriteriaId":"9DAA2E6F-A666-4136-8F6B-E35C313CAB2B"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_rt:-:*:*:*:*:*:*:*","matchCriteriaId":"ABC7A32C-4A4A-4533-B42E-350E728ADFEB"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:*:r2:itanium:*:*:*:*:*","matchCriteriaId":"B2B19826-5516-4899-9599-F95D0A03FBCD"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:*:r2:x64:*:*:*:*:*","matchCriteriaId":"4945F25F-2828-4D03-930B-A109BA73E00C"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:*:sp2:itanium:*:*:*:*:*","matchCriteriaId":"7C684420-1614-4DAE-9BD9-F1FE9102A50F"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x64:*:*:*:*:*","matchCriteriaId":"FFF81F4B-7D92-4398-8658-84530FB8F518"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x86:*:*:*:*:*","matchCriteriaId":"32C28EC2-8A34-4E30-A76A-86921D7332C1"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*","matchCriteriaId":"A7DF96F8-BA6A-4780-9CA3-F719B3F81074"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*","matchCriteriaId":"0A0D2704-C058-420B-B368-372D1129E914"}]}]}],"references":[{"url":"http://www.us-cert.gov/cas/techalerts/TA13-008A.html","source":"secure@microsoft.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-006","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16273","source":"secure@microsoft.com"},{"url":"http://www.us-cert.gov/cas/techalerts/TA13-008A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-006","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16273","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}