Lucene search
MozillaCVELIST:CVE-2018-12404HistoryMay 02, 2019 - 4:40 p.m.
CVE-2018-12404
2019-05-0216:40:14
mozilla
www.cve.org
1
A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) and affects all NSS versions prior to NSS 3.41.
CNA Affected
[
{
"product": "Network Security Services (NSS)",
"vendor": "Mozilla",
"versions": [
{
"status": "affected",
"version": "All versions prior to NSS 3.41"
}
]
}
]References
lists.opensuse.org/opensuse-security-announce/2019-07/msg00021.html
www.securityfocus.com/bid/107260
access.redhat.com/errata/RHSA-2019:2237
bugzilla.mozilla.org/show_bug.cgi?id=CVE-2018-12404
cert-portal.siemens.com/productcert/pdf/ssa-379803.pdf
lists.debian.org/debian-lts-announce/2020/09/msg00029.html
us-cert.cisa.gov/ics/advisories/icsa-21-040-04
www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
Related
openvas
openvas
Huawei EulerOS: Security Advisory for nss (EulerOS-SA-2020-1214)
2020-03-13 00:00:00
Mageia: Security Advisory (MGASA-2018-0482)
2022-01-28 00:00:00
Fedora Update for nss FEDORA-2018-a78b2ef820
2019-05-07 00:00:00
redhatcve
redhatcve
CVE-2018-12404
2020-04-07 11:09:22
ibm
ibm
Security Bulletin: Network Security (NSS) vulnerability affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products
2023-03-29 01:48:02
fedora
fedora
[SECURITY] Fedora 29 Update: nss-3.40.1-1.0.fc29
2018-12-09 21:03:20
[SECURITY] Fedora 28 Update: nss-3.40.1-1.0.fc28
2018-12-11 01:58:33
f5
f5
K10281096 : TLS in Mozilla NSS vulnerability CVE-2018-12404
2019-01-07 00:00:00
nessus
nessus
Photon OS 2.0: Nss PHSA-2019-2.0-0164
2019-06-24 00:00:00
EulerOS 2.0 SP2 : nss (EulerOS-SA-2019-2467)
2019-12-04 00:00:00
openSUSE Security Update : mozilla-nss (openSUSE-2019-183)
2019-02-15 00:00:00
ubuntucve
ubuntucve
CVE-2018-12404
2018-12-12 00:00:00
veracode
veracode
Information Disclosure
2019-08-08 00:07:30
osv
osv
CVE-2018-12404
2019-05-02 17:29:01
nss - security update
2019-03-04 00:00:00
nss - security update
2020-09-29 00:00:00
mageia
mageia
Updated nss packages fix security vulnerability
2018-12-16 00:29:48
prion
prion
Design/Logic Flaw
2019-05-02 17:29:00
alpinelinux
alpinelinux
CVE-2018-12404
2019-05-02 17:29:01
suse
suse
Security update for mozilla-nss (important)
2019-02-14 00:00:00
Security update for mozilla-nss (moderate)
2018-12-13 12:16:00
Security update for mozilla-nspr and mozilla-nss (moderate)
2018-12-28 21:12:25
nvd
nvd
CVE-2018-12404
2019-05-02 17:29:01
debiancve
debiancve
CVE-2018-12404
2019-05-02 17:29:01
slackware
slackware
[slackware-security] mozilla-nss
2018-12-03 21:40:40
symantec
symantec
cve
cve
CVE-2018-12404
2019-05-02 17:29:01
amazon
amazon
Medium: nss
2019-09-30 22:57:00
Important: nss, nss-softokn, nss-util, nspr
2020-03-16 21:29:00
debian
debian
[SECURITY] [DLA 1704-1] nss security update
2019-03-05 03:44:43
[SECURITY] [DLA 2388-1] nss security update
2020-09-29 19:15:28
oraclelinux
oraclelinux
photon
photon
Moderate Photon OS Security Update - PHSA-2019-0020
2019-06-17 00:00:00
Moderate Photon OS Security Update - PHSA-2019-3.0-0020
2019-06-17 00:00:00
ubuntu
ubuntu
NSS vulnerabilities
2019-02-18 00:00:00
NSS vulnerabilities
2019-01-09 00:00:00
redhat
redhat
centos
centos
nspr, nss security update
2019-08-30 03:43:23
ics
ics
Siemens RUGGEDCOM ROX II
2021-02-09 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2019
2020-01-22 00:00:00
Oracle Critical Patch Update Advisory - April 2019
2019-04-16 00:00:00