DEBIAN-CVE-2017-7502

DEBIAN-CVE-2017-7502 PUBLISHED CVSS 7.5 HIGH

Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker.

Risk Scores

CVSS v3.0

7.5

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Debian:12	nss	0, 0, 0
Debian:14	nss	0, 0, 0
Debian:13	nss	0, 0, 0
Debian:11	nss	0, 0, 0

Timeline

May 30, 2017 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2017-7502 advisory

Open in Interactive Console →