CVE-2013-5606

🗓️ 16 Nov 2013 15:00:00Reported by mozillaType

The CERT_VerifyCert function in lib/certhigh/certvfy.c in Mozilla Network Security Services (NSS) 3.15 before 3.15.3 provides an unexpected return value for an incompatible key-usage certificate when the CERTVerifyLog argument is valid, which might allow remote attackers to bypass intended access restrictions via a crafted certificate

Reporter	Title	Published	Views	Family All 171
ATTACKERKB	CVE-2013-5606	18 Nov 201305:23	–	attackerkb
Amazon	Important: nss	17 Dec 201300:00	–	amazon
Amazon	Important: nspr	17 Dec 201300:00	–	amazon
Tenable Nessus	Amazon Linux AMI : nss (ALAS-2013-265)	23 Dec 201300:00	–	nessus
Tenable Nessus	Amazon Linux AMI : nspr (ALAS-2013-266)	23 Dec 201300:00	–	nessus
Tenable Nessus	CentOS 5 : nspr / nss (CESA-2013:1791)	6 Dec 201300:00	–	nessus
Tenable Nessus	CentOS 6 : nspr / nss / nss-util (CESA-2013:1829)	13 Dec 201300:00	–	nessus
Tenable Nessus	Debian DLA-23-1 : nss security update	26 Mar 201500:00	–	nessus
Tenable Nessus	Debian DSA-2994-1 : nss - security update	1 Aug 201400:00	–	nessus
Tenable Nessus	GLSA-201406-19 : Mozilla Network Security Service: Multiple vulnerabilities	23 Jun 201400:00	–	nessus

NVD

Node

mozilla network_security_servicesMatch3.15

mozilla network_security_servicesMatch3.15.1

mozilla network_security_servicesMatch3.15.2

Source	Link
kb	www.kb.juniper.net/InfoCenter/index
debian	www.debian.org/security/2014/dsa-2994
oracle	www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
vmware	www.vmware.com/security/advisories/VMSA-2014-0012.html
securityfocus	www.securityfocus.com/bid/63737
oracle	www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
rhn	www.rhn.redhat.com/errata/RHSA-2013-1829.html
security	www.security.gentoo.org/glsa/201504-01
rhn	www.rhn.redhat.com/errata/RHSA-2013-1791.html
mozilla	www.mozilla.org/security/announce/2013/mfsa2013-103.html

29 Apr 2026 01:13Current

5.3Medium risk

Vulners AI Score5.3

CVSS 25.8

EPSS0.00661

CWE-264