CVE-2018-12384

low-risk

Published 2019-04-29

When handling a SSLv2-compatible ClientHello request, the server doesn't generate a new random value but sends an all-zero value instead. This results in full malleability of the ClientHello for SSLv2 used for TLS 1.2 in all versions prior to NSS 3.39. This does not impact TLS 1.3.

Do I need to act?

0.62% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.9/10 Medium

NETWORK / HIGH complexity

Affected Products (1)

Network Security Services

Affected Vendors

Mozilla

References (4)

Issue Tracking https://bugzilla.mozilla.org/show_bug.cgi?id=CVE-2018-12384

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

Issue Tracking https://bugzilla.mozilla.org/show_bug.cgi?id=CVE-2018-12384

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 2/34 · Minimal

Exposure 5/34 · Minimal