CVE-2017-7502
published 2017-05-30CVE-2017-7502: Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote…
high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker.
Affected
24 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nss | < nss 2:3.26.2-1.1 (bookworm) | nss 2:3.26.2-1.1 (bookworm) |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | network_security_services | — | — |
| mozilla | nss | >= 0 < 2:3.26.2-1.1 | 2:3.26.2-1.1 |
| mozilla | nss | >= 0 < 2:3.26.2-1.1 | 2:3.26.2-1.1 |
| mozilla | nss | >= 0 < 2:3.26.2-1.1 | 2:3.26.2-1.1 |
| mozilla | nss | >= 0 < 2:3.26.2-1.1 | 2:3.26.2-1.1 |
| nss_project | nss | — | — |
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH