Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:33195
HistoryDec 07, 2021 - 3:48 p.m.

Remote Code Execution (RCE)

2021-12-0715:48:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
28
remote code execution
nss
vulnerability
ssl/tls
connection
software

EPSS

0.008

Percentile

81.4%

nss is vulnerable to remote code execution. The vulnerability exists due to a flaw in the way NSS verifies certificates allowing an attacker to pose as an SSL/TLS server to trigger this issue in a client application compiled with NSS when it tries to initiate an SSL/TLS connection.