Notice for CVE-2023-0767 in Network Security Service (NSS) libraries

Knowledgebase

108Administration 8App Services 42Errors 144MarkLogic Server 52Performance Tuning

Knowledgebase:

17 March 2023 01:03 PM

MarkLogic 11, MarkLogic 10, & MarkLogic 9 all use the Network Security Service (NSS) libraries ( nss, nss-sysinit, nss-tools ) which have known vulnerabilities.

Library	Version	CVE	Severity
nss	3.79.0-4.el7_9 rpm	CVE-2023-0767	High
nss-sysinit	3.79.0-4.el7_9 rpm	CVE-2023-0767	High
nss-tools	3.79.0-4.el7_9 rpm	CVE-2023-0767	High

At this time, there is no impact for MarkLogic Server from these vulnerabilities as MarkLogic Server does not exercise or use the code that has the identified vulnerability.

(0 vote(s))

Helpful

Not helpful

Comments (0)

Sitefinity

NativeChat

MOVEit

Kendo UI

Telerik

DataDirect

Corticon

Kemp LoadMaster

Flowmon

WhatsUp Gold

Kendo UI

Telerik

Test Studio

Fiddler Everywhere

DataDirect

Chef

MOVEit

WS_FTP

OpenEdge

MarkLogic

Semaphore