Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2016-1938

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The smpdiv function in lib/freebl/mpi/mpi.c in Mozilla Network Security Services NSS before 3.21, as used in Mozilla Firefox before 44.0, improperly divides...

6.5CVSS7.6AI score0.03121EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.29 views

RHEL 7 : nss (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Mozilla NSS: Errors in mpdiv and mpexptmod cryptographic functions CVE-2016-1938 - SSL/TLS: Birthday atta...

7.5CVSS8.1AI score0.95707EPSS
Exploits10References11
Debian
Debian
added 2016/10/05 8:20 p.m.65 views

[SECURITY] [DSA 3688-1] nss security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3688-1 [email protected] https://www.debian.org/security/ Florian Weimer October 05, 2016 https://www.debian.org/security/faq -...

9.8CVSS8.2AI score0.9986EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2016/05/19 12:0 a.m.33 views

Ubuntu 14.04 LTS / 16.04 LTS : Thunderbird vulnerabilities (USN-2973-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2973-1 advisory. Christian Holler, Tyson Smith, and Phil Ringalda discovered multiple memory safety issues in Thunderbird. If a user were tricked in to openin...

10CVSS8.2AI score0.04692EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2016/05/19 12:0 a.m.38 views

Debian DLA-480-1 : nss security update

This security update fixes serious security issues in NSS including arbitrary code execution and remote denial service attacks. For Debian 7 'wheezy', these problems have been fixed in 3.14.5-1+deb7u6. We recommend you upgrade your nss packages as soon as possible. CVE-2015-7181 The...

9.8CVSS8.7AI score0.10238EPSS
Exploits0References8
Debian
Debian
added 2016/05/18 6:34 p.m.50 views

[SECURITY] [DLA 480-1] nss security update

Package : nss Version : 3.14.5-1+deb7u6 CVE ID : CVE-2015-7181 CVE-2015-7182 CVE-2016-1938 CVE-2016-1950 CVE-2016-1978 CVE-2016-1979 This security update fixes serious security issues in NSS including arbitrary code execution and remote denial service attacks. For Debian 7 "wheezy", these problem...

9.8CVSS7.8AI score0.10238EPSS
Exploits0
OSV
OSV
added 2016/05/18 12:0 a.m.35 views

DLA-480-1 nss - security update

Bulletin has no description...

9.8CVSS7.8AI score0.10238EPSS
Exploits0
Debian
Debian
added 2016/02/24 6:59 a.m.25 views

[SECURITY] [DLA 427-1] nss security update

Package : nss Version : 3.12.8-1+squeeze14 CVE ID : CVE-2016-1938 The smpdiv function in Mozilla Network Security Services NSS before 3.21, improperly divides numbers, which might make it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging use of the 1 mpdiv or...

6.5CVSS6.9AI score0.03121EPSS
Exploits0
OpenVAS
OpenVAS
added 2016/02/24 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-2903-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.6AI score0.03121EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/02/24 12:0 a.m.40 views

Ubuntu 12.04 LTS : nss regression (USN-2903-2)

USN-2903-1 fixed a vulnerability in NSS. An incorrect package versioning change in Ubuntu 12.04 LTS caused a regression when building software against NSS. This update fixes the problem. We apologize for the inconvenience. Hanno Bock discovered that NSS incorrectly handled certain division...

6.5CVSS7.8AI score0.03121EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/02/18 12:0 a.m.27 views

Ubuntu 14.04 LTS : NSS vulnerability (USN-2903-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2903-1 advisory. Hanno Bck discovered that NSS incorrectly handled certain division functions, possibly leading to cryptographic weaknesses. CVE-2016-1938 This update also refresh...

6.5CVSS7.9AI score0.03121EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2016/02/02 2:12 a.m.57 views

Security update for the MozillaFirefox, mozilla-nss and mozilla-nspr (important)

This update to MozillaFirefox fixes several security issues and bugs. Mozilla Firefox was updated to 44.0. Mozilla NSS was updated to 3.21 Mozilla NSPR was updated to 4.11. The following vulnerabilities were fixed: CVE-2016-1930/CVE-2016-1931: Miscellaneous memory safety hazards boo963633...

10CVSS2.8AI score0.05992EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2016/02/02 12:0 a.m.43 views

openSUSE: Security Advisory for Mozilla (openSUSE-SU-2016:0306-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References1
OpenVAS
OpenVAS
added 2016/02/02 12:0 a.m.28 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2016:0309-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.05722EPSS
Exploits0References1
OSV
OSV
added 2016/01/31 6:59 p.m.7 views

CVE-2016-1938

The smpdiv function in lib/freebl/mpi/mpi.c in Mozilla Network Security Services NSS before 3.21, as used in Mozilla Firefox before 44.0, improperly divides numbers, which might make it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging use of the 1 mpdiv or 2...

6.5CVSS7.8AI score0.03121EPSS
Exploits0References23
CVE
CVE
added 2016/01/31 6:0 p.m.189 views

CVE-2016-1938

CVE-2016-1938 affects Mozilla NSS up to version 3.21, used by Firefox prior to 44.0. The issue is in the s_mp_div function in lib/freebl/mpi/mpi.c, where numbers are divided incorrectly, potentially allowing remote attackers to defeat cryptographic protections by leveraging use of mp_div or mp_ex...

6.5CVSS7.6AI score0.03121EPSS
Exploits0References23Affected Software2
OpenVAS
OpenVAS
added 2016/01/29 12:0 a.m.33 views

Mozilla Firefox Multiple Vulnerabilities (Jan 2016) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

10CVSS7.6AI score0.05992EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/01/28 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-2880-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.9AI score0.05992EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/01/26 12:0 a.m.24 views

CVE-2016-1938

The smpdiv function in lib/freebl/mpi/mpi.c in Mozilla Network Security Services NSS before 3.21, as used in Mozilla Firefox before 44.0, improperly divides numbers, which might make it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging use of the 1 mpdiv or 2...

6.5CVSS7AI score0.03121EPSS
Exploits0References6
Rows per page
Query Builder