Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2021-102398
HistoryDec 02, 2021 - 12:00 a.m.

Mozilla Network Security Services Buffer Overflow Vulnerability (CNVD-2021-102398)

2021-12-0200:00:00
China National Vulnerability Database
www.cnvd.org.cn
16
mozilla nss
validation
certificates
vulnerability
ssl
s/mime
cross-platform
security

EPSS

0.008

Percentile

81.4%

Mozilla Network Security Services (NSS) is a library of functions (Network Security Services library) from the Mozilla Foundation in the United States. The product provides cross-platform support for SSL, S/MIME, and other Internet security standards.A security vulnerability exists in verifies certificates in Mozilla Network Security Services (NSS), which stems from a flaw in the way NSS validates certificates. An attacker could trigger the vulnerability by initiating an SSL TLS connection through a client application compiled with NSS.