Security Advisory

CVE-2019-17006

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-10-22 20:24:25

Last updated 2024-08-05 01:24:48

Assigner mozilla

State PUBLISHED

Description

In Network Security Services (NSS) before 3.46, several cryptographic primitives had missing length checks. In cases where the application calling the library did not perform a sanity check on the inputs it could result in a crash due to a buffer overflow.

← Browse all CVEs View on cve.org ↗