Lucene search
+L

23 matches found

OpenVAS
OpenVAS
added 2021/11/08 12:0 a.m.31 views

Mozilla Firefox Security Advisory (MFSA2019-21) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

9.8CVSS7.7AI score0.20271EPSS
Exploits4References27
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2019:3395-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8AI score0.03552EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2019:2545-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.02574EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2021/05/01 12:0 a.m.30 views

CentOS: Security Advisory for nss (CESA-2020:4076)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS7.8AI score0.03552EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2020:0088-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.2AI score0.03552EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.57 views

Scientific Linux Security Update : nss and nspr on SL7.x x86_64 (20201001)

Security Fixes : - nss: Out-of-bounds read when importing curve25519 private key CVE-2019-11719 - nss: Use-after-free in sftkFreeSession due to improper refcounting CVE-2019-11756 - nss: Check length of inputs for cryptographic primitives CVE-2019-17006 - nss: Side channel attack on ECDSA signatu...

10CVSS7.1AI score0.03552EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2020/09/29 10:31 p.m.377 views

Moderate: Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update

An update for nss, nss-softokn, nss-util, and nspr is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

10CVSS6.6AI score0.03552EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2020/01/15 12:0 a.m.78 views

SUSE SLED12 / SLES12 Security Update : mozilla-nspr, mozilla-nss (SUSE-SU-2020:0088-1)

This update for mozilla-nspr, mozilla-nss fixes the following issues : mozilla-nss was updated to NSS 3.47.1 : Security issues fixed : CVE-2019-17006: Added length checks for cryptographic primitives bsc1159819. CVE-2019-11745: EncryptUpdate should use maxout, not block size bsc1158527...

10CVSS7.2AI score0.03552EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2020/01/13 12:0 a.m.56 views

openSUSE Security Update : mozilla-nspr / mozilla-nss (openSUSE-2020-8)

This update for mozilla-nspr, mozilla-nss fixes the following issues : mozilla-nss was updated to NSS 3.47.1 : Security issues fixed : - CVE-2019-17006: Added length checks for cryptographic primitives bsc1159819. - CVE-2019-11745: EncryptUpdate should use maxout, not block size bsc1158527. -...

10CVSS7.2AI score0.03552EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2020/01/12 12:0 a.m.42 views

openSUSE: Security Advisory for mozilla-nspr, mozilla-nss (openSUSE-SU-2020:0008-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS7.7AI score0.03552EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/01/11 12:0 a.m.116 views

Security update for mozilla-nspr, mozilla-nss (moderate)

openSUSE Security Update: Security update for mozilla-nspr, mozilla-nss Announcement ID: openSUSE-SU-2020:0008-1 Rating: moderate References: 1141322 1158527 1159819 Cross-References: CVE-2018-18508 CVE-2019-11745 CVE-2019-17006 Affected Products: openSUSE Leap 15.1 An update that fixes three...

10CVSS8.2AI score0.03552EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/12/31 12:0 a.m.96 views

SUSE SLED15 / SLES15 Security Update : mozilla-nspr, mozilla-nss (SUSE-SU-2019:3395-1)

This update for mozilla-nspr, mozilla-nss fixes the following issues : mozilla-nss was updated to NSS 3.47.1 : Security issues fixed : CVE-2019-17006: Added length checks for cryptographic primitives bsc1159819. CVE-2019-11745: EncryptUpdate should use maxout, not block size bsc1158527...

10CVSS7.2AI score0.03552EPSS
Exploits1References11
OSV
OSV
added 2019/12/30 1:5 p.m.7 views

SUSE-SU-2019:3395-1 Security update for mozilla-nspr, mozilla-nss

This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to NSS 3.47.1: Security issues fixed: - CVE-2019-17006: Added length checks for cryptographic primitives bsc1159819. - CVE-2019-11745: EncryptUpdate should use maxout, not block size bsc1158527. -...

10CVSS6.7AI score0.03552EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2019/10/04 12:0 a.m.37 views

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2019:2545-1)

This update for MozillaFirefox to 68.1 fixes the following issues : Security issues fixed : CVE-2019-9811: Fixed a sandbox escape via installation of malicious language pack. bsc1140868 CVE-2019-9812: Fixed a sandbox escape through Firefox Sync. bsc1149294 CVE-2019-11710: Fixed several memory...

9.8CVSS7.1AI score0.02574EPSS
Exploits5References80
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.55 views

RHEL 8 : nss and nspr (RHSA-2019:1951)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1951 advisory. Network Security Services NSS is a set of libraries designed to support the cross-platform development of security-enabled client and server...

7.5CVSS7.7AI score0.02794EPSS
Exploits1References24
RedHat Linux
RedHat Linux
added 2019/07/30 7:50 p.m.174 views

Moderate: Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update

An update for nss and nspr is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.5CVSS6.7AI score0.02794EPSS
Exploits1References17
OpenVAS
OpenVAS
added 2019/07/26 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-4054-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.20271EPSS
Exploits4References3
OSV
OSV
added 2019/07/23 2:15 p.m.8 views

CVE-2019-11727

A vulnerability exists where it possible to force Network Security Services NSS to sign CertificateVerify with PKCS1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. PKCS1 v1.5 signatures should not be used for TLS 1.3 messages. This vulnerabilit...

5.3CVSS7.1AI score
Exploits0References9
CVE
CVE
added 2019/07/23 1:16 p.m.478 views

CVE-2019-11727

CVE-2019-11727 concerns Mozilla NSS and affects Firefox versions earlier than 68. The issue allows NSS to sign TLS 1.3 CertificateVerify messages with PKCS#1 v1.5 signatures when those are the only ones advertised by the server in CertificateRequest. This is inappropriate for TLS 1.3 and is the u...

5.3CVSS6.3AI score0.01741EPSS
Exploits0References9Affected Software1
Mageia
Mageia
added 2019/07/21 6:17 p.m.63 views

Updated firefox packages fix security vulnerability

Sandbox escape via installation of malicious language pack. CVE-2019-9811 Script injection within domain through inner window reuse. CVE-2019-11711 Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects. CVE-2019-11712 Use-after-free with HTTP/2 cached stream...

9.8CVSS9.3AI score0.20271EPSS
Exploits4References5
Rows per page
Query Builder