VDB
ALPINE-CVE-2018-12404
ALPINE-CVE-2018-12404
PUBLISHED
CVSS 5.900000095367432 MEDIUM
A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) and affects all NSS versions prior to NSS 3.41.
Risk Scores
CVSS 3.0
5.900000095367432
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.20 | nss | 0, 3.39-r0, 3.38-r1 |
| Alpine:v3.9 | nss | 3.38-r0, 0, 3.39-r0 |
| Alpine:v3.11 | nss | 0, 3.39-r0, 3.38-r1 |
| Alpine:v3.12 | nss | 0, 3.12.10-r0, 3.12.11-r0 |
| Alpine:v3.22 | nss | 0, 0, 3.39-r0 |
| Alpine:v3.19 | nss | 0, 0, 3.39-r0 |
| Alpine:v3.10 | nss | 3.12.8-r5, 0, 3.12.10-r0 |
| Alpine:v3.23 | nss | 3.12.10-r0, 0, 3.12.10-r0 |
| Alpine:v3.24 | nss | 0 |
| Alpine:v3.21 | nss | 0, 3.39-r0, 3.38-r1 |
Timeline
- May 2, 2019 CVE Published
- Apr 30, 2026 Distribution Patch
- Jun 9, 2026 CVE Updated