Mozilla Nss vulnerabilities
10 known vulnerabilities affecting mozilla/nss.
Total CVEs
10
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH2MEDIUM5
Vulnerabilities
Page 1 of 1
CVE-2023-4421MEDIUMCVSS 6.5fixed in 3.6.1≥ unspecified, < 3.612023-12-12
CVE-2023-4421 [MEDIUM] CWE-203 CVE-2023-4421: The NSS code used for checking PKCS#1 v1.5 was leaking information useful in mounting Bleichenbacher
The NSS code used for checking PKCS#1 v1.5 was leaking information useful in mounting Bleichenbacher-like attacks. Both the overall correctness of the padding as well as the length of the encrypted message was leaking through timing side-channel. By sending large number of attacker-selected ciphertexts, the attacker would be able to decrypt a previous
cvelistv5nvd
CVE-2021-43527CRITICALCVSS 9.8fixed in 3.732021-12-08
CVE-2021-43527 [CRITICAL] CWE-787 CVE-2021-43527: NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overfl
NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \#7, or PKCS \#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.50
cvelistv5nvd
CVE-2020-12403CRITICALCVSS 9.1fixed in 3.552021-05-27
CVE-2020-12403 [CRITICAL] CWE-125 CVE-2020-12403: A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When u
A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to
nvd
CVE-2019-17006CRITICALCVSS 9.8≥ unspecified, < 3.462020-10-22
CVE-2019-17006 [CRITICAL] CWE-20 CVE-2019-17006: In Network Security Services (NSS) before 3.46, several cryptographic primitives had missing length
In Network Security Services (NSS) before 3.46, several cryptographic primitives had missing length checks. In cases where the application calling the library did not perform a sanity check on the inputs it could result in a crash due to a buffer overflow.
cvelistv5nvd
CVE-2019-17007HIGHCVSS 7.5≥ unspecified, < 3.442020-10-22
CVE-2019-17007 [HIGH] CWE-295 CVE-2019-17007: In Network Security Services before 3.44, a malformed Netscape Certificate Sequence can cause NSS to
In Network Security Services before 3.44, a malformed Netscape Certificate Sequence can cause NSS to crash, resulting in a denial of service.
cvelistv5nvd
CVE-2018-18508MEDIUMCVSS 6.5≥ unspecified, < 3.41.1≥ unspecified, < 3.36.72020-10-22
CVE-2018-18508 [MEDIUM] CWE-476 CVE-2018-18508: In Network Security Services (NSS) before 3.36.7 and before 3.41.1, a malformed signature can cause
In Network Security Services (NSS) before 3.36.7 and before 3.41.1, a malformed signature can cause a crash due to a null dereference, resulting in a Denial of Service.
cvelistv5nvd
CVE-2016-5285HIGHCVSS 7.5fixed in 3.262019-11-15
CVE-2016-5285 [HIGH] CWE-476 CVE-2016-5285: A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missin
A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote malicious user cause a Denial of Service.
nvd
CVE-2016-8635MEDIUMCVSS 5.9v3.21.x2018-08-01
CVE-2016-8635 [MEDIUM] CWE-358 CVE-2016-8635: It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small
It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired group.
cvelistv5nvd
CVE-2016-1938MEDIUMCVSS 6.5≤ 3.20.12016-01-31
CVE-2016-1938 [MEDIUM] CWE-310 CVE-2016-1938: The s_mp_div function in lib/freebl/mpi/mpi.c in Mozilla Network Security Services (NSS) before 3.21
The s_mp_div function in lib/freebl/mpi/mpi.c in Mozilla Network Security Services (NSS) before 3.21, as used in Mozilla Firefox before 44.0, improperly divides numbers, which might make it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging use of the (1) mp_div or (2) mp_exptmod function.
nvd
CVE-2009-3555MEDIUMCVSS 5.8PoC≤ 3.12.42009-11-09
CVE-2009-3555 [MEDIUM] CWE-295 CVE-2009-3555: The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Infor
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly
nvd