CVEs-PoC/2011/CVE-2011-4968.md

### [CVE-2011-4968](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4968)
![](https://img.shields.io/static/v1?label=Product&message=nginx&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20through%201.6.2%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=http%20proxy%20module%20does%20not%20verify%20peer%20identity%20of%20https%20origin%20server&color=brighgreen)

### Description

nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM)

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/lukeber4/usn-search