CVE-2018-18508

Опубликовано: 22 окт. 2020

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 6.5

Описание

In Network Security Services (NSS) before 3.36.7 and before 3.41.1, a malformed signature can cause a crash due to a null dereference, resulting in a Denial of Service.

Релиз	Статус	Примечание
bionic	released	2:3.35-2ubuntu2.2
cosmic	released	2:3.36.1-1ubuntu1.2
devel	released	2:3.42-1ubuntu2
esm-infra-legacy/trusty	released	2:3.28.4-0ubuntu0.14.04.5
esm-infra/bionic	released	2:3.35-2ubuntu2.2
esm-infra/xenial	released	2:3.28.4-0ubuntu0.16.04.5
precise/esm	not-affected	2:3.28.4-0ubuntu0.12.04.3
trusty	released	2:3.28.4-0ubuntu0.14.04.5
trusty/esm	released	2:3.28.4-0ubuntu0.14.04.5
upstream	released	3.41.1,3.42.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 54%

0.00315

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-18508

CVSS3: 6.5

redhat

почти 7 лет назад

In Network Security Services (NSS) before 3.36.7 and before 3.41.1, a malformed signature can cause a crash due to a null dereference, resulting in a Denial of Service.

CVE-2018-18508

CVSS3: 6.5

nvd

около 5 лет назад

In Network Security Services (NSS) before 3.36.7 and before 3.41.1, a malformed signature can cause a crash due to a null dereference, resulting in a Denial of Service.

CVE-2018-18508

CVSS3: 6.5

debian

около 5 лет назад

In Network Security Services (NSS) before 3.36.7 and before 3.41.1, a ...

GHSA-45r6-rwfw-29cq

github

больше 3 лет назад

In Network Security Services (NSS) before 3.36.7 and before 3.41.1, a malformed signature can cause a crash due to a null dereference, resulting in a Denial of Service.

BDU:2019-01410

CVSS3: 6.5

fstec

почти 7 лет назад

Уязвимость компонента Сertificate Management Server набора библиотек Network Security Services, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 54%

0.00315

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2018-18508

Описание

Пакет nss

Ссылки на источники

Связанные уязвимости