Vulnerability CVE-2018-12404


Published: 2019-05-02

Description:
A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) and affects all NSS versions prior to NSS 3.41.

Type:

CWE-310

(Cryptographic Issues)

Vendor: Mozilla
Product: Network security services 
Version:
3.9.5
3.9.4
3.9.3
3.9.2
3.9.1
3.9
3.8
3.7.7
3.7.5
3.7.3
3.7.2
3.7.1
3.7
3.6.1
3.6
3.5
3.4.3
3.4.2
3.4.1
3.4
3.39
3.38
3.37.3
3.37.1
3.37
3.36.4
3.36.2
3.36.1
3.36
3.35
3.34.1
3.34
3.33
3.32
3.31.1
3.31
3.30.2
3.30.1
3.30
3.3.2
3.3.1
3.29.5
3.29.3
3.29.2
3.29.1
3.29
3.28.5
3.28.4
3.28.3
3.28.2
3.28.1
3.28.0
3.28
3.27.2
3.27.1
3.27.0
3.27
3.26.2
3.26.0
3.26
3.25.1
3.25.0
3.25
3.24
3.23
3.22.2
3.22.1
3.22
3.21.4
3.21.3
3.21.2
3.21.1
3.21
3.20.1
3.20.0
3.20
3.2.1
3.19.3
3.19.2.0
3.19.2
3.19.1
3.19
3.18.1
3.18
3.17.4
3.17.3
3.17.2
3.17.1
3.17
3.16.6
3.16.5
3.16.4
3.16.3
3.16.2.3
3.16.2.2
3.16.2.1
3.16.2
3.16.1
See more versions on NVD

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.3/10
2.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None

 References:
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00021.html
http://www.securityfocus.com/bid/107260
https://bugzilla.mozilla.org/show_bug.cgi?id=CVE-2018-12404

Related CVE
CVE-2019-9821
A use-after-free vulnerability can occur in AssertWorkerThread due to a race condition with shared workers. This results in a potentially exploitable crash. This vulnerability affects Firefox < 67.
CVE-2019-9820
A use-after-free vulnerability can occur in the chrome event handler when it is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.
CVE-2019-9819
A vulnerability where a JavaScript compartment mismatch can occur while working with the fetch API, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.
CVE-2019-9817
Images from a different domain can be read using a canvas object in some circumstances. This could be used to steal image data from a different site in violation of same-origin policy. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and ...
CVE-2019-9816
A possible vulnerability exists where type confusion can occur when manipulating JavaScript objects in object groups, allowing for the bypassing of security checks within these groups. *Note: this vulnerability has only been demonstrated with Unboxed...
CVE-2019-9815
If hyperthreading is not disabled, a timing attack vulnerability exists, similar to previous Spectre attacks. Apple has shipped macOS 10.14.5 with an option to disable hyperthreading in applications running untrusted code in a thread through a new sy...
CVE-2019-9814
Mozilla developers and community members reported memory safety bugs present in Firefox 66. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. Th...
CVE-2019-9811
As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR < 60.8, Firefox < ...

Copyright 2019, cxsecurity.com

 

Back to Top