Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.4 views

MiracleLinux 8 : nspr-4.25.0-2.el8, nss-3.53.1-11.0.1.el8 (AXSA:2020-690:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-690:01 advisory. nss: UAF in sftkFreeSession due to improper refcounting CVE-2019-11756 nss: Check length of inputs for cryptographic primitives CVE-2019-17006 nss:...

10CVSS8.4AI score0.03552EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.13 views

Alibaba Cloud Linux 3 : 0015: nss (ALINUX3-SA-2021:0015)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0015 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-12400: When converting coordinate...

10CVSS7.6AI score0.03552EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2023/09/14 12:0 a.m.29 views

Siemens RUGGEDCOM ROX II Insufficient Verification of Data Authenticity (CVE-2019-17006)

In Network Security Services NSS before 3.46, several cryptographic primitives had missing length checks. In cases where the application calling the library did not perform a sanity check on the inputs it could result in a crash due to a buffer overflow. This plugin only works with Tenable.ot...

10CVSS6.9AI score0.03552EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.4 views

SUSE CVE-2019-17006

In Network Security Services NSS before 3.46, several cryptographic primitives had missing length checks. In cases where the application calling the library did not perform a sanity check on the inputs it could result in a crash due to a buffer overflow...

6.8CVSS7.2AI score0.03552EPSS
Exploits1References23
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/08 5:59 p.m.43 views

Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2019-17006, CVE-2019-17023, CVE-2020-12403)

Summary IBM has announced a release for IBM Security Identity Governance and Intelligence IGI in response to security vulnerability. The vulnerability concerns Open Source - 2 issues for nss and one additional issue. Vulnerability Details CVEID: CVE-2019-17006 DESCRIPTION: Mozilla Network Securit...

10CVSS9.4AI score0.03552EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2019:3395-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8AI score0.03552EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/20 6:59 p.m.38 views

Security Bulletin: A security vulnerabilitiy has been fixed in IBM Security Identity Manager Virtual Appliance(CVE-2019-17006)

Summary IBM Security Identity Manager Virtual Appliance ISIM VA has addressed the following vulnerabilitiy in various Open Source packages: Vulnerability Details CVEID: CVE-2019-17006 DESCRIPTION: Mozilla Network Security Services NSS, as used in Mozilla Firefox is vulnerable to a heap-based buff...

10CVSS4AI score0.03552EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2021/05/01 12:0 a.m.30 views

CentOS: Security Advisory for nss (CESA-2020:4076)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS7.8AI score0.03552EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.34 views

SUSE: Security Advisory (SUSE-SU-2020:1677-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.2AI score0.03552EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2020:0088-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.2AI score0.03552EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/03/30 9:49 a.m.83 views

Moderate: Red Hat Security Advisory: nss-softokn security update

An update for nss-softokn is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

10CVSS6.6AI score0.03552EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for nss (EulerOS-SA-2021-1640)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.3AI score0.03854EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2021/03/09 9:22 a.m.80 views

Moderate: Red Hat Security Advisory: nss-softokn security update

An update for nss-softokn is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security...

10CVSS6.6AI score0.03552EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/02/02 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for nss-softokn (EulerOS-SA-2021-1155)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.1AI score0.03552EPSS
Exploits1References2
CVE
CVE
added 2020/10/22 8:24 p.m.499 views

CVE-2019-17006

CVE-2019-17006 : In Network Security Services (NSS) prior to 3.46, several cryptographic primitives lacked input length checks, enabling a heap-based buffer overflow that could crash the application or, per in-document wording, potentially allow code execution. The issue is associated with NSS us...

10CVSS9.4AI score0.03552EPSS
Exploits1References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.57 views

Scientific Linux Security Update : nss and nspr on SL7.x x86_64 (20201001)

Security Fixes : - nss: Out-of-bounds read when importing curve25519 private key CVE-2019-11719 - nss: Use-after-free in sftkFreeSession due to improper refcounting CVE-2019-11756 - nss: Check length of inputs for cryptographic primitives CVE-2019-17006 - nss: Side channel attack on ECDSA signatu...

10CVSS7.1AI score0.03552EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2020/09/30 12:0 a.m.68 views

Debian DLA-2388-1 : nss security update

Various vulnerabilities were fixed in nss, the Network Security Service libraries. CVE-2018-12404 Cache side-channel variant of the Bleichenbacher attack. CVE-2018-18508 NULL pointer dereference in several CMS functions resulting in a denial of service. CVE-2019-11719 Out-of-bounds read when...

10CVSS7.2AI score0.44398EPSS
Exploits2References16
OpenVAS
OpenVAS
added 2020/09/30 12:0 a.m.26 views

Debian: Security Advisory (DLA-2388-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.44398EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2020/09/29 10:31 p.m.377 views

Moderate: Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update

An update for nss, nss-softokn, nss-util, and nspr is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

10CVSS6.6AI score0.03552EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2020/08/07 12:0 a.m.60 views

Oracle Linux 8 : nss / and / nspr (ELSA-2020-3280)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-3280 advisory. nspr 4.25.0-2 - Rebuild 4.25.0-1 - Update to NSPR 4.25 nss 3.53.1-11 - Fix issue with upgradedb where upgradedb expects standard to generate dbm...

10CVSS7.5AI score0.03552EPSS
Exploits1References5
Rows per page
Query Builder