RHSA-2021:0876
Advisory lineage Upstream: 4 Downstream: 0
Published: 16 Sept 2024, 04:44
Last modified:15 May 2026, 10:51
Vulnerability Summary
Overall Risk (default)
medium
32/100 CVSS Score
8.1 HIGH
3.0 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
16 Sept 2024, 04:44
Published
Vulnerability first disclosed
15 May 2026, 10:51
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: nss and nss-softokn security update
CVSS Metrics
- v3.0•HIGH•Score: 8.1CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- redhat•nss
< 0:3.36.0-9.el7_6 | < 0:3.36.0-9.el7_6
- redhat•nss-debuginfo
< 0:3.36.0-9.el7_6 | < 0:3.36.0-9.el7_6
- redhat•nss-devel
< 0:3.36.0-9.el7_6 | < 0:3.36.0-9.el7_6
- redhat•nss-pkcs11-devel
< 0:3.36.0-9.el7_6 | < 0:3.36.0-9.el7_6
- redhat•nss-softokn
< 0:3.36.0-7.el7_6 | < 0:3.36.0-7.el7_6
- redhat•nss-softokn-debuginfo
< 0:3.36.0-7.el7_6 | < 0:3.36.0-7.el7_6
- redhat•nss-softokn-devel
< 0:3.36.0-7.el7_6 | < 0:3.36.0-7.el7_6
- redhat•nss-softokn-freebl
< 0:3.36.0-7.el7_6 | < 0:3.36.0-7.el7_6
- redhat•nss-softokn-freebl-devel
< 0:3.36.0-7.el7_6 | < 0:3.36.0-7.el7_6
- redhat•nss-sysinit
< 0:3.36.0-9.el7_6 | < 0:3.36.0-9.el7_6
- redhat•nss-tools
< 0:3.36.0-9.el7_6 | < 0:3.36.0-9.el7_6
References (22)
- https://access.redhat.com/errata/RHSA-2021:0876
- https://access.redhat.com/security/updates/classification/#moderate
- https://bugzilla.redhat.com/show_bug.cgi?id=1703979
- https://bugzilla.redhat.com/show_bug.cgi?id=1774835
- https://bugzilla.redhat.com/show_bug.cgi?id=1775916
- https://bugzilla.redhat.com/show_bug.cgi?id=1868931
- https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0876.json
- https://access.redhat.com/security/cve/CVE-2019-11756
- https://www.cve.org/CVERecord?id=CVE-2019-11756
- https://nvd.nist.gov/vuln/detail/CVE-2019-11756
- https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.47_release_notes
- https://access.redhat.com/security/cve/CVE-2019-17006
- https://www.cve.org/CVERecord?id=CVE-2019-17006
- https://nvd.nist.gov/vuln/detail/CVE-2019-17006
- https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.46_release_notes
- https://access.redhat.com/security/cve/CVE-2019-17007
- https://www.cve.org/CVERecord?id=CVE-2019-17007
- https://nvd.nist.gov/vuln/detail/CVE-2019-17007
- https://access.redhat.com/security/cve/CVE-2020-12403
- https://www.cve.org/CVERecord?id=CVE-2020-12403
- https://nvd.nist.gov/vuln/detail/CVE-2020-12403
- https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.55_release_notes