Mod Nss Project Mod Nss — known CVE vulnerabilities
Every CVE whose affected-product data names Mod Nss Project Mod Nss, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2011-4973 — CVSS 9.8 (critical): Authentication bypass vulnerability in mod_nss 1.0.8 allows remote attackers to assume the identity of a valid user by using their…
CVE-2015-5244 — CVSS 9.8 (critical): The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions.
CVE-2015-3277 — CVSS 7.5 (high): The mod_nss module before 1.0.11 in Fedora allows remote attackers to obtain cipher lists due to incorrect parsing of multi-keyword…
CVE-2013-4566 — CVSS 4.0 (medium): mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting…