0.002 Low
EPSS
Percentile
59.8%
A use-after-free flaw was found in Mozilla Network Security Services (NSS) related to PK11 session handling. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled with NSS.
bugzilla.redhat.com/show_bug.cgi?id=1774835
developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.47_release_notes
nvd.nist.gov/vuln/detail/CVE-2019-11756
www.cve.org/CVERecord?id=CVE-2019-11756