CVE-2018-12404 is a vulnerability in Mozilla Network Security Services
Published on May 2, 2019

A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) and affects all NSS versions prior to NSS 3.41.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2018-12404

Want to know whenever a new CVE is published for Mozilla Network Security Services? stack.watch will email you.

Mozilla Network Security Services

Affected Versions

Mozilla Network Security Services (NSS) Version All versions prior to NSS 3.41 is affected by CVE-2018-12404

Exploit Probability

EPSS

14.50%

Percentile

94.31%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-12404 is a vulnerability in Mozilla Network Security ServicesPublished on May 2, 2019

Products Associated with CVE-2018-12404

Affected Versions

Exploit Probability

CVE-2018-12404 is a vulnerability in Mozilla Network Security Services
Published on May 2, 2019