CVE-2016-5285
A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11
A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote malicious user cause a Denial of Service.
HIGH · CVSS 7.5
EPSS 0.01626
Schedule remediation
- CVSS base score ≥ 7.0
Sigma rules0
YARA rules0