0.002 Low
EPSS
Percentile
59.8%
nss is vulnerable to authorization bypass. The vulnerability exists as TLS 1.3 HelloRetryRequest downgrade request sets client into invalid state.
access.redhat.com/errata/RHSA-2020:3280
access.redhat.com/security/updates/classification/#moderate
bugzilla.mozilla.org/show_bug.cgi?id=1590001
usn.ubuntu.com/4234-1/
usn.ubuntu.com/4397-1/
www.debian.org/security/2020/dsa-4726
www.mozilla.org/security/advisories/mfsa2020-01/