Lucene search
Veracode Vulnerability DatabaseVERACODE:27008HistorySep 21, 2020 - 6:30 a.m.
Insecure Certificate Signature Signing
2020-09-2106:30:08
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.006 Low
EPSS
Percentile
78.7%
firefox does not properly perform certificate signature signing. A vulnerability exists where it is possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. PKCS#1 v1.5 signatures should not be used for TLS 1.3 messages.
Related
prion
prion
Design/Logic Flaw
2019-07-23 14:15:00
ubuntucve
ubuntucve
CVE-2019-11727
2019-07-11 00:00:00
cvelist
cvelist
CVE-2019-11727
2019-07-23 13:16:44
redhatcve
redhatcve
CVE-2019-11727
2019-07-18 06:22:12
nvd
nvd
CVE-2019-11727
2019-07-23 14:15:16
cve
cve
CVE-2019-11727
2019-07-23 14:15:16
debiancve
debiancve
CVE-2019-11727
2019-07-23 14:15:16
openvas
openvas
Ubuntu: Security Advisory (USN-4060-1)
2019-07-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:0088-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:3395-1)
2021-06-09 00:00:00
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : NSS vulnerabilities (USN-4060-1)
2019-07-17 00:00:00
SUSE SLED12 / SLES12 Security Update : mozilla-nspr, mozilla-nss (SUSE-SU-2020:0088-1)
2020-01-15 00:00:00
openSUSE Security Update : mozilla-nspr / mozilla-nss (openSUSE-2020-8)
2020-01-13 00:00:00
ubuntu
ubuntu
NSS vulnerabilities
2019-07-16 00:00:00
Firefox vulnerabilities
2019-07-12 00:00:00
Firefox regressions
2019-07-25 00:00:00
suse
suse
Security update for mozilla-nspr, mozilla-nss (moderate)
2020-01-12 00:00:00
Security update for MozillaThunderbird (important)
2019-10-04 00:00:00
Security update for MozillaFirefox (important)
2019-10-06 00:00:00
oraclelinux
oraclelinux
nss and nspr security, bug fix, and enhancement update
2019-08-05 00:00:00
nss and nspr security, bug fix, and enhancement update
2020-10-08 00:00:00
redhat
redhat
ibm
ibm
amazon
amazon
Medium: nspr, nss-softokn, nss-util, nss
2020-11-09 21:02:00
Medium: nspr, nss-softokn, nss-util
2021-07-08 18:41:00
centos
centos
nspr, nss security update
2020-11-06 22:01:52
kaspersky
kaspersky
KLA11549 Multiple vulnerabilities in Mozilla Thunderbird
2019-08-27 00:00:00
KLA11515 Multiple vulnerabilities in Mozilla Firefox
2019-07-09 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2019-09-12 22:09:52
Updated firefox packages fix security vulnerability
2019-07-21 21:17:27
mozilla
mozilla
Security vulnerabilities fixed in Thunderbird 68 — Mozilla
2019-08-27 00:00:00
Security vulnerabilities fixed in Firefox 68 — Mozilla
2019-07-09 00:00:00
archlinux
archlinux
[ASA-201907-4] firefox: multiple issues
2019-07-17 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2019-07-09 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2019-08-15 00:00:00