mozilla-nss vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the mozilla-nss package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
C CVE-2020-6829	<3.68-3.56.1
H Allocation of Resources Without Limits or Throttling	<3.68-3.56.1
C Out-of-bounds Read	<3.68-3.56.1
C Information Exposure	<3.68-3.56.1
C Information Exposure	<3.68-3.56.1
H Use of Uninitialized Resource	<3.79-150000.3.74.1
H Out-of-Bounds	<3.40.1-3.7.2
H Origin Validation Error	<3.40.1-3.7.2
H Use After Free	<3.40.1-3.7.2
H Out-of-bounds Read	<3.40.1-3.7.2
H Integer Overflow or Wraparound	<3.40.1-3.7.2
M PRNG Seed Error	<3.40.1-3.7.2
M CVE-2018-12404	<3.40.1-3.7.2
H Out-of-Bounds	<3.40.1-3.7.2
M Information Exposure	<3.40.1-3.7.2
H Use After Free	<3.41.1-3.13.1
H Improper Authentication	<3.41.1-3.13.1
H Out-of-Bounds	<3.41.1-3.13.1
M CVE-2018-12404	<3.41.1-3.13.1
H Arbitrary Code Injection	<3.44.1-3.16.2
H CVE-2019-11730	<3.44.1-3.16.2
H Out-of-Bounds	<3.44.1-3.16.2
H Out-of-bounds Read	<3.44.1-3.16.2
H Improper Encoding or Escaping of Output	<3.44.1-3.16.2
H Cross-site Scripting (XSS)	<3.44.1-3.16.2
H Use After Free	<3.44.1-3.16.2
H Cross-site Request Forgery (CSRF)	<3.44.1-3.16.2
H CVE-2019-11711	<3.44.1-3.16.2
H Out-of-bounds Write	<3.44.1-3.16.2
M Improper Input Validation	<3.47.1-3.22.1
H Out-of-bounds Write	<3.47.1-3.22.1
M NULL Pointer Dereference	<3.47.1-3.22.1
M Information Exposure	<3.53-3.40.1
M Improper Input Validation	<3.53-3.40.1
M Information Exposure	<3.53.1-3.45.1
H Out-of-bounds Write	<3.68.1-3.61.1
H Use After Free	<3.68.3-150000.3.67.1