CVE-2020-25648
Description
A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. This flaw affects NSS versions before 3.58.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.091
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in IBM Cognos Analytics 11.2.4 | Windows |
| Multiple Vulnerabilities are affected in IBM Cognos Analytics 12.0.3 | Windows |
| (RHSA-2021:1384) nss security and bug fix update nss-3.53.1-7.el7_9.i686.rpm | Linux |
| (RHSA-2021:1384) nss security and bug fix update nss-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:1384) nss security and bug fix update nss-devel-3.53.1-7.el7_9.i686.rpm | Linux |
| (RHSA-2021:1384) nss security and bug fix update nss-devel-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:1384) nss security and bug fix update nss-pkcs11-devel-3.53.1-7.el7_9.i686.rpm | Linux |
| (RHSA-2021:1384) nss security and bug fix update nss-pkcs11-devel-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:1384) nss security and bug fix update nss-sysinit-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:1384) nss security and bug fix update nss-tools-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (CESA-2021:1384) nss security and bug fix update nss-3.53.1-7.el7_9.i686.rpm | Linux |
| (CESA-2021:1384) nss security and bug fix update nss-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (CESA-2021:1384) nss security and bug fix update nss-devel-3.53.1-7.el7_9.i686.rpm | Linux |
| (CESA-2021:1384) nss security and bug fix update nss-devel-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (CESA-2021:1384) nss security and bug fix update nss-pkcs11-devel-3.53.1-7.el7_9.i686.rpm | Linux |
| (CESA-2021:1384) nss security and bug fix update nss-pkcs11-devel-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (CESA-2021:1384) nss security and bug fix update nss-sysinit-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (CESA-2021:1384) nss security and bug fix update nss-tools-3.53.1-7.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nspr-4.32.0-1.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nspr-4.32.0-1.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nspr-debugsource-4.32.0-1.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nspr-debugsource-4.32.0-1.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nspr-devel-4.32.0-1.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nspr-devel-4.32.0-1.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-debugsource-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-debugsource-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-devel-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-devel-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-softokn-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-softokn-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-softokn-devel-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-softokn-devel-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-softokn-freebl-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-softokn-freebl-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-softokn-freebl-devel-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-softokn-freebl-devel-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-sysinit-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-tools-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-util-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-util-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-util-devel-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572) nss and nspr security, bug fix, and enhancement update nss-util-devel-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nspr update (ELSA-2021-3572) nspr-4.32.0-1.el8_4.i686.rpm | Linux |
| Nspr update (ELSA-2021-3572) nspr-4.32.0-1.el8_4.x86_64.rpm | Linux |
| Nspr-devel update (ELSA-2021-3572) nspr-devel-4.32.0-1.el8_4.i686.rpm | Linux |
| Nspr-devel update (ELSA-2021-3572) nspr-devel-4.32.0-1.el8_4.x86_64.rpm | Linux |
| Nss update (ELSA-2021-3572) nss-3.67.0-6.el8_4.i686.rpm | Linux |
| Nss update (ELSA-2021-3572) nss-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nss-devel update (ELSA-2021-3572) nss-devel-3.67.0-6.el8_4.i686.rpm | Linux |
| Nss-devel update (ELSA-2021-3572) nss-devel-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nss-softokn update (ELSA-2021-3572) nss-softokn-3.67.0-6.el8_4.i686.rpm | Linux |
| Nss-softokn update (ELSA-2021-3572) nss-softokn-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nss-softokn-devel update (ELSA-2021-3572) nss-softokn-devel-3.67.0-6.el8_4.i686.rpm | Linux |
| Nss-softokn-devel update (ELSA-2021-3572) nss-softokn-devel-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nss-softokn-freebl update (ELSA-2021-3572) nss-softokn-freebl-3.67.0-6.el8_4.i686.rpm | Linux |
| Nss-softokn-freebl update (ELSA-2021-3572) nss-softokn-freebl-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nss-softokn-freebl-devel update (ELSA-2021-3572) nss-softokn-freebl-devel-3.67.0-6.el8_4.i686.rpm | Linux |
| Nss-softokn-freebl-devel update (ELSA-2021-3572) nss-softokn-freebl-devel-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nss-sysinit update (ELSA-2021-3572) nss-sysinit-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nss-tools update (ELSA-2021-3572) nss-tools-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nss-util update (ELSA-2021-3572) nss-util-3.67.0-6.el8_4.i686.rpm | Linux |
| Nss-util update (ELSA-2021-3572) nss-util-3.67.0-6.el8_4.x86_64.rpm | Linux |
| Nss-util-devel update (ELSA-2021-3572) nss-util-devel-3.67.0-6.el8_4.i686.rpm | Linux |
| Nss-util-devel update (ELSA-2021-3572) nss-util-devel-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nspr-debuginfo-4.32.0-1.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nspr-debuginfo-4.32.0-1.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-debuginfo-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-debuginfo-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-softokn-debuginfo-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-softokn-debuginfo-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-softokn-freebl-debuginfo-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-softokn-freebl-debuginfo-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-sysinit-debuginfo-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-sysinit-debuginfo-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-tools-debuginfo-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-tools-debuginfo-3.67.0-6.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-util-debuginfo-3.67.0-6.el8_4.i686.rpm | Linux |
| (RHSA-2021:3572)Moderate: and nspr security, bug fix, and enhancement update nss-util-debuginfo-3.67.0-6.el8_4.x86_64.rpm | Linux |
| nss and nspr security, bug fix, and enhancement update (RLSA-2021:3572) nspr-4.32.0-1.el8_4.i686.rpm | Linux |
| nss and nspr security, bug fix, and enhancement update (RLSA-2021:3572) nspr-4.32.0-1.el8_4.x86_64.rpm | Linux |
| nss and nspr security, bug fix, and enhancement update (RLSA-2021:3572) nspr-devel-4.32.0-1.el8_4.i686.rpm | Linux |
| nss and nspr security, bug fix, and enhancement update (RLSA-2021:3572) nspr-devel-4.32.0-1.el8_4.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234