Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla nss vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2014-1569
The definite_length_decoder function in lib/util/quickder.c in Mozilla Network Security Services (NSS) prior to 3.16.2.4 and 3.17.x prior to 3.17.3 does not ensure that the DER encoding of an ASN.1 length is properly formed, which allows remote malicious users to conduct data-smu...
Mozilla Network Security Services 3.16.2.1
Mozilla Network Security Services 3.16.2.0
Mozilla Network Security Services 3.17.2
Mozilla Network Security Services
Mozilla Network Security Services 3.16.2.2
Mozilla Network Security Services 3.17.1
Mozilla Network Security Services 3.17.0
668
VMScore
CVE-2013-5607
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) prior to 4.10.2, as used in Firefox prior to 25.0.1, Firefox ESR 17.x prior to 17.0.11 and 24.x prior to 24.1.1, and SeaMonkey prior to 2.22.1, allows remote malicious users to cause a d...
Mozilla Netscape Portable Runtime 4.9.6
Mozilla Netscape Portable Runtime 4.9.5
Mozilla Netscape Portable Runtime 4.8.8
Mozilla Netscape Portable Runtime 4.8.7
Mozilla Netscape Portable Runtime
Mozilla Netscape Portable Runtime 4.10
Mozilla Netscape Portable Runtime 4.9
Mozilla Netscape Portable Runtime 4.8.9
Mozilla Netscape Portable Runtime 4.8.2
Mozilla Netscape Portable Runtime 4.8
Mozilla Netscape Portable Runtime 4.9.2
Mozilla Netscape Portable Runtime 4.9.1
Mozilla Netscape Portable Runtime 4.8.4
Mozilla Netscape Portable Runtime 4.8.3
Mozilla Netscape Portable Runtime 4.7.2
Mozilla Netscape Portable Runtime 4.7.1
Mozilla Netscape Portable Runtime 4.7
Mozilla Netscape Portable Runtime 4.6.2
Mozilla Netscape Portable Runtime 4.6.1
Mozilla Netscape Portable Runtime 4.1.2
Mozilla Netscape Portable Runtime 4.1.1
Mozilla Netscape Portable Runtime 4.7.6
668
VMScore
CVE-2013-1741
Integer overflow in Mozilla Network Security Services (NSS) 3.15 prior to 3.15.3 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a large size value.
Mozilla Network Security Services 3.15
Mozilla Network Security Services 3.15.1
Mozilla Network Security Services 3.15.2
668
VMScore
CVE-2013-5605
Mozilla Network Security Services (NSS) 3.14 prior to 3.14.5 and 3.15 prior to 3.15.3 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via invalid handshake packets.
Mozilla Network Security Services 3.14
Mozilla Network Security Services 3.14.4
Mozilla Network Security Services 3.15
Mozilla Network Security Services 3.15.1
Mozilla Network Security Services 3.15.2
Mozilla Network Security Services 3.14.3
Mozilla Network Security Services 3.14.2
Mozilla Network Security Services 3.14.1
668
VMScore
CVE-2010-3173
The SSL implementation in Mozilla Firefox prior to 3.5.14 and 3.6.x prior to 3.6.11, Thunderbird prior to 3.0.9 and 3.1.x prior to 3.1.5, and SeaMonkey prior to 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for r...
Mozilla Firefox 3.6
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.1.10
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1.16
Mozilla Seamonkey 1.1.17
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 2.0
Mozilla Seamonkey 2.0.1
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0.7
668
VMScore
CVE-2004-0826
Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote malicious users to execute arbitrary code via a modified record length field in an SSLv2 client hello message.
Mozilla Network Security Services 3.2
Mozilla Network Security Services 3.2.1
Mozilla Network Security Services 3.5
Mozilla Network Security Services 3.6
Mozilla Network Security Services 3.7.7
Mozilla Network Security Services 3.8
Netscape Directory Server 4.11
Netscape Directory Server 4.13
Netscape Enterprise Server 3.0.7a
Netscape Enterprise Server 3.0l
Mozilla Network Security Services 3.4.1
Mozilla Network Security Services 3.4.2
Mozilla Network Security Services 3.7.3
Mozilla Network Security Services 3.7.5
Netscape Directory Server 3.12
Netscape Directory Server 4.1
Netscape Enterprise Server 3.0.1
Netscape Enterprise Server 3.0.1b
Netscape Enterprise Server 3.5
Netscape Enterprise Server 3.5.1
Netscape Enterprise Server 4.1.1
Netscape Enterprise Server 4.1
632
VMScore
CVE-2016-1956
Mozilla Firefox prior to 45.0 on Linux, when an Intel video driver is used, allows remote malicious users to cause a denial of service (memory consumption or stack memory corruption) by triggering use of a WebGL shader.
Mozilla Firefox
Novell Suse Package Hub For Suse Linux Enterprise 12
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
632
VMScore
CVE-2011-3640
Untrusted search path vulnerability in Mozilla Network Security Services (NSS), as used in Google Chrome prior to 17 on Windows and Mac OS X, might allow local users to gain privileges via a Trojan horse pkcs11.txt file in a top-level directory. NOTE: the vendor's response w...
Google Chrome
605
VMScore
CVE-2019-11745
When encrypting with a block cipher, if a call to NSC_EncryptUpdate was made with data smaller than the block size, a small out of bounds write could occur. This could have caused heap corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 68....
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Thunderbird
Opensuse Leap 15.1
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Debian Debian Linux 9.0
Redhat Enterprise Linux Server Aus 6.6
Siemens Ruggedcom Rox Mx5000 Firmware
Siemens Ruggedcom Rox Rx1400 Firmware
Siemens Ruggedcom Rox Rx1500 Firmware
Siemens Ruggedcom Rox Rx1501 Firmware
Siemens Ruggedcom Rox Rx1510 Firmware
Siemens Ruggedcom Rox Rx1511 Firmware
Siemens Ruggedcom Rox Rx1512 Firmware
Siemens Ruggedcom Rox Rx5000 Firmware
605
VMScore
CVE-2019-11756
Improper refcounting of soft token session objects could cause a use-after-free and crash (likely limited to a denial of service). This vulnerability affects Firefox < 71.
Mozilla Firefox
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »