Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla nss vulnerabilities and exploits
(subscribe to this query)
392
VMScore
CVE-2016-1963
The FileReader class in Mozilla Firefox prior to 45.0 allows local users to gain privileges or cause a denial of service (memory corruption) by changing a file during a FileReader API read operation.
Mozilla Firefox
570
VMScore
CVE-2016-1938
The s_mp_div function in lib/freebl/mpi/mpi.c in Mozilla Network Security Services (NSS) prior to 3.21, as used in Mozilla Firefox prior to 44.0, improperly divides numbers, which might make it easier for remote malicious users to defeat cryptographic protection mechanisms by lev...
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Nss
Mozilla Firefox
890
VMScore
CVE-2015-2726
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 39.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Oracle Solaris 11.3
Mozilla Firefox
Novell Suse Linux Enterprise Server 12.0
Novell Suse Linux Enterprise Server 11
Novell Suse Linux Enterprise Desktop 12.0
Novell Suse Linux Enterprise Software Development Kit 12.0
446
VMScore
CVE-2015-4000
The TLS protocol 1.2 and previous versions, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle malicious users to conduct cipher-downgrade attacks by rewriting a ClientHello with D...
Openssl Openssl
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Hp Hp-ux B.11.31
Ibm Content Manager 8.5
Oracle Jrockit R28.3.6
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Oracle Jdk 1.8.0
Oracle Jre 1.7.0
Oracle Jre 1.6.0
Oracle Jre 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.6.0
Suse Linux Enterprise Server 11.0
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Suse Linux Enterprise Server 12
Apple Mac Os X
Apple Iphone Os
1 Nmap script
4 Github repositories
1 Article
668
VMScore
CVE-2014-1569
The definite_length_decoder function in lib/util/quickder.c in Mozilla Network Security Services (NSS) prior to 3.16.2.4 and 3.17.x prior to 3.17.3 does not ensure that the DER encoding of an ASN.1 length is properly formed, which allows remote malicious users to conduct data-smu...
Mozilla Network Security Services 3.16.2.1
Mozilla Network Security Services 3.17.2
Mozilla Network Security Services
Mozilla Network Security Services 3.17.0
Mozilla Network Security Services 3.16.2.2
Mozilla Network Security Services 3.16.2.0
Mozilla Network Security Services 3.17.1
890
VMScore
CVE-2014-1544
Use-after-free vulnerability in the CERT_DestroyCertificate function in libnss3.so in Mozilla Network Security Services (NSS) 3.x, as used in Firefox prior to 31.0, Firefox ESR 24.x prior to 24.7, and Thunderbird prior to 24.7, allows remote malicious users to execute arbitrary c...
Mozilla Network Security Services 3.11.2
Mozilla Network Security Services 3.6.1
Mozilla Network Security Services 3.12.5
Mozilla Network Security Services 3.2
Mozilla Network Security Services 3.15
Mozilla Firefox Esr 24.5
Mozilla Network Security Services 3.11.4
Mozilla Network Security Services 3.7.7
Mozilla Network Security Services 3.14.1
Mozilla Network Security Services 3.7.5
Mozilla Network Security Services 3.7.1
Mozilla Network Security Services 3.12.9
Mozilla Firefox Esr 24.2
Mozilla Network Security Services 3.15.3
Mozilla Network Security Services 3.12.3.1
Mozilla Network Security Services 3.6
Mozilla Thunderbird 24.0.1
Mozilla Network Security Services 3.12.6
Mozilla Network Security Services 3.2.1
Mozilla Network Security Services 3.12.8
Mozilla Thunderbird 24.2
Mozilla Network Security Services 3.15.1
383
VMScore
CVE-2014-1492
The cert_TestHostName function in lib/certdb/certdb.c in the certificate-checking implementation in Mozilla Network Security Services (NSS) prior to 3.16 accepts a wildcard character that is embedded in an internationalized domain name's U-label, which might allow man-in-the...
Mozilla Network Security Services 3.11.2
Mozilla Network Security Services 3.6.1
Mozilla Network Security Services 3.12.5
Mozilla Network Security Services 3.2
Mozilla Network Security Services 3.15
Mozilla Network Security Services 3.11.4
Mozilla Network Security Services 3.7.7
Mozilla Network Security Services 3.14.1
Mozilla Network Security Services 3.7.5
Mozilla Network Security Services 3.7.1
Mozilla Network Security Services 3.12.9
Mozilla Network Security Services 3.15.3
Mozilla Network Security Services 3.12.3.1
Mozilla Network Security Services 3.6
Mozilla Network Security Services 3.12.6
Mozilla Network Security Services 3.2.1
Mozilla Network Security Services 3.12.8
Mozilla Network Security Services
Mozilla Network Security Services 3.15.1
Mozilla Network Security Services 3.12.11
Mozilla Network Security Services 3.14.3
Mozilla Network Security Services 3.14.4
668
VMScore
CVE-2013-5607
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) prior to 4.10.2, as used in Firefox prior to 25.0.1, Firefox ESR 17.x prior to 17.0.11 and 24.x prior to 24.1.1, and SeaMonkey prior to 2.22.1, allows remote malicious users to cause a d...
Mozilla Netscape Portable Runtime 4.2
Mozilla Netscape Portable Runtime 4.6
Mozilla Netscape Portable Runtime 4.6.4
Mozilla Netscape Portable Runtime 4.8.8
Mozilla Netscape Portable Runtime 4.6.8
Mozilla Netscape Portable Runtime 4.7.6
Mozilla Netscape Portable Runtime 4.10
Mozilla Netscape Portable Runtime 4.9.4
Mozilla Netscape Portable Runtime 4.3
Mozilla Netscape Portable Runtime 4.7.5
Mozilla Netscape Portable Runtime 4.7.2
Mozilla Netscape Portable Runtime 4.8.5
Mozilla Netscape Portable Runtime 4.6.5
Mozilla Netscape Portable Runtime 4.7.3
Mozilla Netscape Portable Runtime 4.6.2
Mozilla Netscape Portable Runtime 4.8.6
Mozilla Netscape Portable Runtime 4.6.7
Mozilla Netscape Portable Runtime 4.4.1
Mozilla Netscape Portable Runtime 4.2.2
Mozilla Netscape Portable Runtime 4.7
Mozilla Netscape Portable Runtime 4.9.6
Mozilla Netscape Portable Runtime 4.1.2
668
VMScore
CVE-2013-1741
Integer overflow in Mozilla Network Security Services (NSS) 3.15 prior to 3.15.3 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a large size value.
Mozilla Network Security Services 3.15
Mozilla Network Security Services 3.15.1
Mozilla Network Security Services 3.15.2
668
VMScore
CVE-2013-5605
Mozilla Network Security Services (NSS) 3.14 prior to 3.14.5 and 3.15 prior to 3.15.3 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via invalid handshake packets.
Mozilla Network Security Services 3.15
Mozilla Network Security Services 3.14.1
Mozilla Network Security Services 3.15.1
Mozilla Network Security Services 3.14.3
Mozilla Network Security Services 3.14.4
Mozilla Network Security Services 3.14
Mozilla Network Security Services 3.15.2
Mozilla Network Security Services 3.14.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »