CVE-2015-5244

Опубликовано: 07 авг. 2017

Источник: debian

EPSS Низкий

Описание

The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.

Пакет	Статус	Версия исправления	Релиз	Тип
libapache2-mod-nss	fixed	1.0.12-1		package
libapache2-mod-nss	not-affected		jessie	package
libapache2-mod-nss	not-affected		wheezy	package

Introduced in https://git.fedorahosted.org/cgit/mod_nss.git/commit/?id=2d1650900f4d47dc43400d826c0f7e1a7c5229b8 (1.0.11)
Fixed by https://git.fedorahosted.org/cgit/mod_nss.git/commit/?id=34e1ccecb4a7d5054dba2f92b403af9b6ae1e110 (1.0.12)

EPSS

Процентиль: 39%

0.00179

Низкий

CVE-2015-5244

CVSS3: 9.8

ubuntu

больше 8 лет назад

The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.

CVE-2015-5244

redhat

больше 10 лет назад

The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.

CVE-2015-5244

CVSS3: 9.8

nvd

больше 8 лет назад

The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.

GHSA-f93f-jh28-5ffr

CVSS3: 9.8

github

больше 3 лет назад

The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.

SUSE-SU-2016:2396-1

suse-cvrf

больше 9 лет назад

Security update for apache2-mod_nss

EPSS

Процентиль: 39%

0.00179

Низкий