Lucene search

K
redhatcveRedhat.comRH:CVE-2020-12402
HistoryJun 17, 2020 - 11:55 a.m.

CVE-2020-12402

2020-06-1711:55:11
redhat.com
access.redhat.com
14

0.001 Low

EPSS

Percentile

29.0%

A flaw was found in NSS, where it is vulnerable to RSA key generation cache timing side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. The highest threat to this flaw is to confidentiality.

Mitigation

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.