Unrated severityNVD Advisory· Published Dec 19, 2023· Updated Feb 13, 2025
CVE-2023-6135
CVE-2023-6135
Description
Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox < 121.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
16< 121+ 1 more
- (no CPE)range: < 121
- (no CPE)range: unspecified
- osv-coords14 versionspkg:rpm/almalinux/nsprpkg:rpm/almalinux/nspr-develpkg:rpm/almalinux/nsspkg:rpm/almalinux/nss-develpkg:rpm/almalinux/nss-softoknpkg:rpm/almalinux/nss-softokn-develpkg:rpm/almalinux/nss-softokn-freeblpkg:rpm/almalinux/nss-softokn-freebl-develpkg:rpm/almalinux/nss-sysinitpkg:rpm/almalinux/nss-toolspkg:rpm/almalinux/nss-utilpkg:rpm/almalinux/nss-util-develpkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweed
< 4.35.0-6.el9_3+ 13 more
- (no CPE)range: < 4.35.0-6.el9_3
- (no CPE)range: < 4.35.0-6.el9_3
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 3.90.0-6.el8_9
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 121.0-1.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.