VYPR
High severity7.5NVD Advisory· Published Oct 20, 2020· Updated Jun 17, 2026

CVE-2020-25648

CVE-2020-25648

Description

A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. This flaw affects NSS versions before 3.58.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

83

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.