Known Vulnerabilities for Network Security Services by Mozilla
Listed below are 10 of the newest known vulnerabilities associated with "Network Security Services" by "Mozilla".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-56275 json | Flowise before 3.1.0 contains a server-side request forgery vulnerability in the Execute Flow node that allows attackers to b... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-50623 json | An authentication bypass vulnerability exists in the OAuth2 TokenIntrospectionService in Apache CXF. Due to a missing 'throw... | Not Provided | 2026-06-12 | 2026-06-16 |
| CVE-2026-45231 json | DumbAssets through 1.0.11 contains a stored cross-site scripting vulnerability in asset fields including name, description, m... | Not Provided | 2026-05-18 | 2026-05-18 |
| CVE-2026-40994 json | Wss4jSecurityInterceptor initialized its BSP (WS-I Basic Security Profile) compliance flag so that inbound validation disable... | Not Provided | 2026-06-11 | 2026-06-11 |
| CVE-2026-40280 json | Gotenberg is an API-based document conversion tool. In versions 8.30.1 and earlier, the default private-IP deny-lists for the... | Not Provided | 2026-05-05 | 2026-05-06 |
| CVE-2026-33726 json | Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.14, 1.18.8,... | Not Provided | 2026-03-27 | 2026-03-27 |
| CVE-2026-20188 json | Following the initial publication of the Security Advisory about a denial of service (DoS) condition in Cisco Crosswork Netwo... | Not Provided | 2026-05-06 | 2026-05-14 |
| CVE-2022-3479 json | A vulnerability found in nss. By this security vulnerability, nss client auth crash without a user certificate in the databas... | 7.5 - HIGH | 2022-10-14 | 2023-02-11 |
| CVE-2020-25648 json | A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to sen... | 7.5 - HIGH | 2020-10-20 | 2023-11-07 |
| CVE-2019-17007 json | In Network Security Services before 3.44, a malformed Netscape Certificate Sequence can cause NSS to crash, resulting in a de... | 7.5 - HIGH | 2020-10-22 | 2021-02-19 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Mozilla | Network Security Services | 3.9.5 | |||
| Application | Mozilla | Network Security Services | 3.9.4 | |||
| Application | Mozilla | Network Security Services | 3.9.3 | |||
| Application | Mozilla | Network Security Services | 3.9.2 | |||
| Application | Mozilla | Network Security Services | 3.9.1 | |||
| Application | Mozilla | Network Security Services | 3.9 | |||
| Application | Mozilla | Network Security Services | 3.8 | |||
| Application | Mozilla | Network Security Services | 3.7.7 | |||
| Application | Mozilla | Network Security Services | 3.7.5 | |||
| Application | Mozilla | Network Security Services | 3.7.3 | |||
| Application | Mozilla | Network Security Services | 3.7.2 | |||
| Application | Mozilla | Network Security Services | 3.7.1 | |||
| Application | Mozilla | Network Security Services | 3.7 | |||
| Application | Mozilla | Network Security Services | 3.6.1 | |||
| Application | Mozilla | Network Security Services | 3.6 | |||
| Application | Mozilla | Network Security Services | 3.58 | |||
| Application | Mozilla | Network Security Services | 3.57 | |||
| Application | Mozilla | Network Security Services | 3.56 | |||
| Application | Mozilla | Network Security Services | 3.55 | |||
| Application | Mozilla | Network Security Services | 3.54 |