CVE-2018-12404

Summary

A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) and affects all NSS versions prior to NSS 3.41.

Affected Software

VendorProductVersion RangeStatus
MozillaNetwork Security Services (NSS)All versions prior to NSS 3.41affected

Weaknesses

  • Cryptographic Issues

ADP Enrichment

CVE Program Container

Additional References

References