CVE-2011-2669Improper Certificate Validation in Mozilla Firefox

CWE-295Improper Certificate Validation3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 57.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mozilla FirefoxDebian FirefoxDebian Firefox-esr
Timeline
PublishedJan 21
Latest updateApr 22

Description

Mozilla Firefox prior to 3.6 has a DoS vulnerability due to an issue in the validation of certificates.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

NVDmozilla/firefox< 3.6
CVEListV5mozilla/firefoxprior to 3.6

🔴Vulnerability Details

1
GHSA
GHSA-jpfq-gv6p-4pv8: Mozilla Firefox prior to 32022-04-22

📋Vendor Advisories

1
Debian
CVE-2011-2669: firefox - Mozilla Firefox prior to 3.6 has a DoS vulnerability due to an issue in the vali...2011