Lucene search
K

108 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : nss-3.67.0-7.el8 (AXSA:2021-2574:07)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2574:07 advisory. nss: Memory corruption in decodeECorDsaSignature with DSA signatures and RSA-PSS CVE-2021-43527 Tenable has extracted the preceding description block directl...

9.8CVSS7AI score0.17563EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 4 : nss-3.44.0-7.0.3.AXS4 (AXSA:2021-2578:08)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2578:08 advisory. nss: Memory corruption in decodeECorDsaSignature with DSA signatures and RSA-PSS CVE-2021-43527 Tenable has extracted the preceding description block directl...

9.8CVSS5.7AI score0.17563EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : nss-3.67.0-7.el8.ML.1 (AXSA:2021-2840:09)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2840:09 advisory. nss: Memory corruption in decodeECorDsaSignature with DSA signatures and RSA-PSS CVE-2021-43527 Tenable has extracted the preceding description block directl...

9.8CVSS7.4AI score0.17563EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.4 views

MiracleLinux 7 : nss-3.67.0-4.el7 (AXSA:2021-2573:06)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2573:06 advisory. nss: Memory corruption in decodeECorDsaSignature with DSA signatures and RSA-PSS CVE-2021-43527 Tenable has extracted the preceding description block directl...

9.8CVSS7AI score0.17563EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.10 views

Alibaba Cloud Linux 3 : 0081: nss (ALINUX3-SA-2021:0081)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2021:0081 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-43527: NSS Network Security Services...

9.8CVSS7.3AI score0.17563EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.36 views

CentOS 9 : nss-3.79.0-14.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the nss-3.79.0-14.el9 build changelog. - NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS...

9.8CVSS7.2AI score0.17563EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/05/08 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for nss (EulerOS-SA-2023-1713)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.17563EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.30 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : nss Vulnerability (NS-SA-2023-0010)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has nss packages installed that are affected by a vulnerability: - NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures...

9.8CVSS7.3AI score0.17563EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.40 views

Amazon Linux 2023 : nspr, nspr-devel, nss (ALAS2023-2023-031)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-031 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within...

9.8CVSS7.6AI score0.17563EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/02/23 12:0 a.m.51 views

Amazon Linux 2 : nspr (ALAS-2023-1953)

The version of nspr installed on the remote host is prior to 4.32.0-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1953 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS...

9.8CVSS7.7AI score0.17563EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/02/22 12:0 a.m.37 views

Amazon Linux 2 : nss-util (ALAS-2023-1954)

The version of nss-util installed on the remote host is prior to 3.67.0-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1954 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS...

9.8CVSS7.7AI score0.17563EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/02/22 12:0 a.m.31 views

Amazon Linux 2 : nss-softokn (ALAS-2023-1955)

The version of nss-softokn installed on the remote host is prior to 3.67.0-3. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1955 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-P...

9.8CVSS7.7AI score0.17563EPSS
Exploits0References4
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.118 views

K54450124: NSS vulnerability CVE-2021-43527

Security Advisory Description NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \7, or PKCS \12 are likely to be...

9.8CVSS8.1AI score0.17563EPSS
Exploits0Affected Software3
Amazon
Amazon
added 2023/02/17 12:11 a.m.40 views

Critical: nss-util

Issue Overview: NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using...

9.8CVSS1AI score0.17563EPSS
Exploits0
Amazon
Amazon
added 2023/02/17 12:11 a.m.35 views

Critical: nspr

Issue Overview: NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using...

9.8CVSS1.1AI score0.17563EPSS
Exploits0
Amazon
Amazon
added 2023/02/17 12:11 a.m.43 views

Critical: nss

Issue Overview: NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using...

9.8CVSS1AI score0.17563EPSS
Exploits0
Prion
Prion
added 2023/02/16 10:15 p.m.38 views

Heap overflow

Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS...

7.5CVSS9.7AI score0.17563EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/02/16 12:0 a.m.25 views

CVE-2021-43529

Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS...

9.9AI score0.00469EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2023/02/16 12:0 a.m.161 views

CVE-2021-43529

Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS...

9.8CVSS3.4AI score0.00469EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/01/30 12:0 a.m.20 views

EulerOS Virtualization 3.0.2.2 : nss (EulerOS-SA-2023-1278)

According to the versions of the nss packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA o...

9.8CVSS7.2AI score0.17563EPSS
Exploits0References2
Rows per page
Query Builder