Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-7502

Опубликовано: 30 мая 2017
Источник: nvd
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mozilla:network_security_services:3.24.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.25.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.25.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.26.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.26.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.27.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.27.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.27.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.28.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.28.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.28.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.28.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.29.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.29.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.29.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.29.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.30.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:network_security_services:3.30.1:*:*:*:*:*:*:*

EPSS

Процентиль: 89%
0.04527
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-476
CWE-476

Связанные уязвимости

ubuntu логотип

CVE-2017-7502

CVSS3: 7.5
ubuntu
больше 8 лет назад

Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker.

redhat логотип

CVE-2017-7502

CVSS3: 7.5
redhat
больше 8 лет назад

Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker.

debian логотип

CVE-2017-7502

CVSS3: 7.5
debian
больше 8 лет назад

Null pointer dereference vulnerability in NSS since 3.24.0 was found w ...

github логотип

GHSA-97vv-2xv8-266j

CVSS3: 7.5
github
больше 3 лет назад

Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker.

oracle-oval логотип

ELSA-2017-1365

oracle-oval
больше 8 лет назад

ELSA-2017-1365: nss security and bug fix update (IMPORTANT)

EPSS

Процентиль: 89%
0.04527
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-476
CWE-476