RSA Handshake Vulnerability in NSS Versions Prior to 3.41

RSA Handshake Vulnerability in NSS Versions Prior to 3.41

CVE-2018-12404 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) and affects all NSS versions prior to NSS 3.41.

Learn more about our Web Application Penetration Testing UK.