[USN-2159-1] NSS vulnerability
Severity
Medium
CVEs
1
NSS could be made to expose sensitive information over the network.
It was discovered that NSS incorrectly handled wildcard certificates when
used with internationalized domain names. If a remote attacker were able to
perform a machine-in-the-middle attack, this flaw could be exploited to spoof
SSL servers.
- ID
- USN-2159-1
- Severity
- medium
- Severity from
- CVE-2014-1492
- URL
- https://ubuntu.com/security/notices/USN-2159-1
- Published
-
2014-04-02T17:29:50
(10 years ago) - Modified
-
2014-04-02T17:29:50
(10 years ago) - Other Advisories
DSA-2994-1
ELSA-2014-0917
FREEBSD:985D4D6C-CFBD-11E3-A003-B4B52FCE4CE8
GLSA-201504-01
RHSA-2014:0917
SSA:2014-086-04| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |