VDB

DEBIAN-CVE-2023-5388

DEBIAN-CVE-2023-5388 PUBLISHED CVSS 6.5 MEDIUM

NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack could potentially allow an attacker to recover the private data. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Affected Products

VendorProductVersions
Debian:13thunderbird0, 0, 0
Debian:14firefox-esr0, 0, 0
Debian:14thunderbird0, 0, 0
Debian:12thunderbird1:115.9.0-1~deb11u1, *, *
Debian:11thunderbird1:115.7.0-1~deb11u1, *, 1:102.0.2-1
Debian:11firefox-esr102.9.0esr-1~deb10u1, 102.9.0esr-1, 102.8.0esr-1~deb11u1
Debian:11nss3.61-1, 3.61-1, 3.61-1
Debian:13nss0, 0, 0
Debian:12nss2:3.87.1-1, 2:3.121-1, 2:3.120-1
Debian:12firefox-esr115.3.1esr-1~deb10u1, *, 115.4.0esr-1
Debian:14nss0, 0, 0
Debian:13firefox-esr0, 0, 0

Exploit Intelligence

Timeline

  • Mar 19, 2024 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›