Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-2730

Опубликовано: 06 июл. 2015
Источник: debian
EPSS Низкий

Описание

Mozilla Network Security Services (NSS) before 3.19.1, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and other products, does not properly perform Elliptical Curve Cryptography (ECC) multiplications, which makes it easier for remote attackers to spoof ECDSA signatures via unspecified vectors.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
nssfixed2:3.19.1-1package
iceweaselfixed38.1.0esr-1package
iceweaselnot-affectedjessiepackage
iceweaselnot-affectedwheezypackage
iceweaselend-of-lifesqueezepackage

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2015-64/

  • https://hg.mozilla.org/projects/nss/rev/fc6870938172

  • https://hg.mozilla.org/projects/nss/rev/2c05e861ce07

EPSS

Процентиль: 56%
0.0034
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2015-2730

ubuntu
около 10 лет назад

Mozilla Network Security Services (NSS) before 3.19.1, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and other products, does not properly perform Elliptical Curve Cryptography (ECC) multiplications, which makes it easier for remote attackers to spoof ECDSA signatures via unspecified vectors.

redhat логотип

CVE-2015-2730

redhat
около 10 лет назад

Mozilla Network Security Services (NSS) before 3.19.1, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and other products, does not properly perform Elliptical Curve Cryptography (ECC) multiplications, which makes it easier for remote attackers to spoof ECDSA signatures via unspecified vectors.

nvd логотип

CVE-2015-2730

nvd
около 10 лет назад

Mozilla Network Security Services (NSS) before 3.19.1, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and other products, does not properly perform Elliptical Curve Cryptography (ECC) multiplications, which makes it easier for remote attackers to spoof ECDSA signatures via unspecified vectors.

github логотип

GHSA-85fg-8m94-wc2q

github
больше 3 лет назад

Mozilla Network Security Services (NSS) before 3.19.1, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and other products, does not properly perform Elliptical Curve Cryptography (ECC) multiplications, which makes it easier for remote attackers to spoof ECDSA signatures via unspecified vectors.

oracle-oval логотип

ELSA-2015-1699

oracle-oval
почти 10 лет назад

ELSA-2015-1699: nss-softokn security update (MODERATE)

EPSS

Процентиль: 56%
0.0034
Низкий