Vulnerability & Exploit Database

Back to search

Huawei EulerOS: CVE-2017-7805: nss security update

Severity CVSS Published Added Modified
4 (AV:L/AC:M/Au:N/C:P/I:P/A:P) September 28, 2017 November 30, 2017 January 18, 2018

Description

A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the application.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

huawei-euleros-2_0_sp1-upgrade-nss

Related Vulnerabilities