Количество 34
Количество 34
GHSA-7x7m-5xcm-74v2
Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision.
CVE-2015-7575
Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision.
CVE-2015-7575
Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision.
CVE-2015-7575
Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision.
CVE-2015-7575
Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozi ...
openSUSE-SU-2016:0605-1
Security update for bouncycastle
openSUSE-SU-2016:0162-1
Security update for mbedtls
openSUSE-SU-2016:0007-1
Security update for MozillaFirefox
openSUSE-SU-2015:2405-1
Security update for mozilla-nss
SUSE-SU-2016:0189-1
Security update for mozilla-nss
SUSE-SU-2016:0149-1
Security update for mozilla-nss
ELSA-2016-0012
ELSA-2016-0012: gnutls security update (MODERATE)
ELSA-2016-0008
ELSA-2016-0008: openssl security update (MODERATE)
ELSA-2016-0007
ELSA-2016-0007: nss security update (MODERATE)
BDU:2016-00136
Уязвимость программных платформ Jrockit и Java Platform, позволяющая нарушителю получить доступ на чтение данных или модифицировать данные
SUSE-SU-2016:0584-1
Security update for MozillaFirefox, MozillaFirefox-branding-SLED, MozillaFirefox-branding-SLES-for-VMware, mozilla-nss
ELSA-2016-0054
ELSA-2016-0054: java-1.7.0-openjdk security update (IMPORTANT)
ELSA-2016-0053
ELSA-2016-0053: java-1.7.0-openjdk security update (CRITICAL)
ELSA-2016-0050
ELSA-2016-0050: java-1.8.0-openjdk security update (IMPORTANT)
ELSA-2016-0049
ELSA-2016-0049: java-1.8.0-openjdk security update (CRITICAL)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-7x7m-5xcm-74v2 Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision. | CVSS3: 5.9 | 2% Низкий | больше 3 лет назад |
 | CVE-2015-7575 Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision. | CVSS3: 5.9 | 2% Низкий | почти 10 лет назад |
 | CVE-2015-7575 Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision. | CVSS2: 5.8 | 2% Низкий | почти 10 лет назад |
 | CVE-2015-7575 Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision. | CVSS3: 5.9 | 2% Низкий | почти 10 лет назад |
| CVE-2015-7575 Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozi ... | CVSS3: 5.9 | 2% Низкий | почти 10 лет назад |
 | openSUSE-SU-2016:0605-1 Security update for bouncycastle | 2% Низкий | больше 9 лет назад | |
| openSUSE-SU-2016:0162-1 Security update for mbedtls | 2% Низкий | почти 10 лет назад | |
| openSUSE-SU-2016:0007-1 Security update for MozillaFirefox | 2% Низкий | почти 10 лет назад | |
| openSUSE-SU-2015:2405-1 Security update for mozilla-nss | 2% Низкий | почти 10 лет назад | |
| SUSE-SU-2016:0189-1 Security update for mozilla-nss | 2% Низкий | почти 10 лет назад | |
| SUSE-SU-2016:0149-1 Security update for mozilla-nss | 2% Низкий | почти 10 лет назад | |
| ELSA-2016-0012 ELSA-2016-0012: gnutls security update (MODERATE) | почти 10 лет назад | ||
| ELSA-2016-0008 ELSA-2016-0008: openssl security update (MODERATE) | почти 10 лет назад | ||
| ELSA-2016-0007 ELSA-2016-0007: nss security update (MODERATE) | почти 10 лет назад | ||
 | BDU:2016-00136 Уязвимость программных платформ Jrockit и Java Platform, позволяющая нарушителю получить доступ на чтение данных или модифицировать данные | CVSS2: 4 | 2% Низкий | почти 10 лет назад |
| SUSE-SU-2016:0584-1 Security update for MozillaFirefox, MozillaFirefox-branding-SLED, MozillaFirefox-branding-SLES-for-VMware, mozilla-nss | больше 9 лет назад | ||
| ELSA-2016-0054 ELSA-2016-0054: java-1.7.0-openjdk security update (IMPORTANT) | почти 10 лет назад | ||
| ELSA-2016-0053 ELSA-2016-0053: java-1.7.0-openjdk security update (CRITICAL) | почти 10 лет назад | ||
| ELSA-2016-0050 ELSA-2016-0050: java-1.8.0-openjdk security update (IMPORTANT) | почти 10 лет назад | ||
| ELSA-2016-0049 ELSA-2016-0049: java-1.8.0-openjdk security update (CRITICAL) | почти 10 лет назад |
Уязвимостей на страницу