Home

CVE-2016-0702

Description

The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a CacheBleed attack.

Risk Information

Base Score
5.1
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.545

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities fixed in OpenSSL (x64) 1.0.1sWindows
Multiple vulnerabilities fixed in OpenSSL (x64) 1.0.2gWindows
Multiple vulnerabilities are fixed in IBM HTTP 9.0.0.5Windows
Multiple vulnerabilities are fixed in IBM HTTP 9.0.0.8Windows
Multiple vulnerabilities are fixed in IBM HTTP 8.5.5.14Windows
Multiple vulnerabilities are fixed in IBM HTTP 7.0.0.45Windows
Multiple vulnerabilities are fixed in IBM WebSphere 8.5.5.15Windows
Multiple vulnerabilities are fixed in IBM WebSphere 7.0.0.45Windows
Multiple vulnerabilities are fixed in IBM WebSphere 9.0.0.9Windows
Multiple Vulnerabilities are affected in IBM Sterling B2B Integrator 5.2Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.0Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.2.3Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.3.0Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.2.0Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.2.1Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.3.0Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.3.1Windows
Multiple Vulnerabilities are affected in IBM Cognos Analytics 11.0.10.0Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.1Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.2Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.3Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.4Windows
Multiple vulnerabilities are fixed in macOS Mojave 10.14.6Mac
Multiple vulnerabilities are fixed in macOS Mojave 10.14.6 Combo UpdateMac
Multiple vulnerabilities are fixed in macOS Mojave 10.14.5 Combo UpdateMac
Multiple vulnerabilities are fixed in macOS Mojave 10.14.5Mac
Multiple vulnerabilities are fixed in macOS Mojave 10.14.4Mac
Multiple vulnerabilities are fixed in macOS Mojave 10.14.4 Combo UpdateMac
Multiple vulnerabilities are fixed in macOS Mojave 10.14.3Mac
Multiple vulnerabilities are fixed in macOS Mojave 10.14.3 Combo UpdateMac
Multiple vulnerabilities are fixed in macOS Mojave 10.14.2Mac
Multiple vulnerabilities are fixed in macOS Mojave 10.14.1Mac
Secure Socket Layer (SSL) cryptographic library and tools (USN-2914-1) libssl1.0.0_1.0.1-4ubuntu5.35_i386.debLinux
Secure Socket Layer (SSL) cryptographic library and tools (USN-2914-1) libssl1.0.0_1.0.1-4ubuntu5.35_amd64.debLinux
Secure Socket Layer (SSL) cryptographic library and tools (USN-2914-1) libssl1.0.0_1.0.2d-0ubuntu1.4_i386.debLinux
Secure Socket Layer (SSL) cryptographic library and tools (USN-2914-1) libssl1.0.0_1.0.2d-0ubuntu1.4_amd64.debLinux
Secure Socket Layer (SSL) cryptographic library and tools (USN-2914-1) libssl1.0.0_1.0.1f-1ubuntu2.18_i386.debLinux
Secure Socket Layer (SSL) cryptographic library and tools (USN-2914-1) libssl1.0.0_1.0.1f-1ubuntu2.18_amd64.debLinux
SUSE-SU-2016:0624-1(SUSE Linux Enterprise Desktop 11-SP4 ) libopenssl0_9_8-0.9.8j-0.89.1.x86_64.rpmLinux
SUSE-SU-2016:0624-1(SUSE Linux Enterprise Desktop 11-SP4 ) libopenssl0_9_8-32bit-0.9.8j-0.89.1.x86_64.rpmLinux
SUSE-SU-2016:0624-1(SUSE Linux Enterprise Desktop 11-SP4 ) openssl-0.9.8j-0.89.1.x86_64.rpmLinux
SUSE-SU-2016:0631-1(SUSE Linux Enterprise Desktop 11-SP4 ) compat-openssl097g-0.9.7g-146.22.41.1.x86_64.rpmLinux
SUSE-SU-2016:0631-1(SUSE Linux Enterprise Desktop 11-SP4 ) compat-openssl097g-32bit-0.9.7g-146.22.41.1.x86_64.rpmLinux
SUSE-SU-2016:1267-1(SUSE Linux Enterprise Desktop 12 ) compat-openssl098-debugsource-0.9.8j-97.1.x86_64.rpmLinux
SUSE-SU-2016:1267-1(SUSE Linux Enterprise Desktop 12 ) libopenssl0_9_8-0.9.8j-97.1.x86_64.rpmLinux
SUSE-SU-2016:1267-1(SUSE Linux Enterprise Desktop 12 ) libopenssl0_9_8-32bit-0.9.8j-97.1.x86_64.rpmLinux
SUSE-SU-2016:1267-1(SUSE Linux Enterprise Desktop 12 ) libopenssl0_9_8-debuginfo-0.9.8j-97.1.x86_64.rpmLinux
SUSE-SU-2016:1267-1(SUSE Linux Enterprise Desktop 12 ) libopenssl0_9_8-debuginfo-32bit-0.9.8j-97.1.x86_64.rpmLinux
SUSE-SU-2016:1360-1(SUSE Linux Enterprise Server 11-SP4 ) vm-install-0.6.42-3.1.x86_64.rpmLinux
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Adaptive Security Appliance (ASA) SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco AnyConnect Secure Mobility ClientNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Application and Content Networking System (ACNS) SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Digital Content Manager (DCM) SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Emergency ResponderNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco FinesseNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Jabber for MacNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Jabber for WindowsNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Jabber GuestNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Jabber Software Development KitNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco MediaSenseNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Mobility Services EngineNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Paging ServerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Plug-in for OpenFlowNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Prime InfrastructureNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Prime NetworkNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Prime Network Services ControllerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Prime OpticalNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Prime Performance ManagerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Security ManagerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco SocialMinerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco TelePresence Serial Gateway SeriesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unified Contact Center EnterpriseNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unified Contact Center ExpressNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unified Intelligence CenterNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unity ConnectionNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Video Surveillance 6000 Series IP CamerasNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco IronPort Email Security Appliance SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco IronPort Security Management Appliance SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco ASR 5000 SeriesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco IronPort Encryption Appliance SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Email EncryptionNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Firepower Management Center Virtual ApplianceNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco UCS DirectorNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Data Center Network ManagerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Intercloud FabricNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Nexus 7000 Series SwitchesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Nexus 1000V Switch for VMware vSphereNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unified Computing SystemNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco UCS Central SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Network RegistrarNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Access RegistrarNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Prime Network Analysis Module SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Prime CollaborationNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Video Networking SolutionsNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco TelePresence ISDN GatewayNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco TelePresence MCU 4500 SeriesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco TelePresence MSE 8000 SeriesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unified Communications LicensingNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Digital Media ManagerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco TelePresence Content ServerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco TelePresence ServerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco TelePresence Video Communication Server SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco IPICS Server SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco ConductorNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Videoscape Distribution Suite for Internet StreamingNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Enterprise CDN SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco NAC Appliance 3300 SeriesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco ASA Next-Generation Firewall ServicesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Support ToolsNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Physical Access GatewaysNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Video Surveillance 4000 Series IP CamerasNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Video Surveillance ManagerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco IPS 4200 Series SensorsNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Headend System ReleasesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco DAVIC QPSK DevicesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco AS Series Media Processor SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unified Attendant ConsolesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unified Communications Manager (CallManager)NCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Hosted Collaboration Solution (HCS)NCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unified MeetingPlaceNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco SIP IP Phone SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco IP Phone FW 7900 Series SoftwareNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Unified Mobile CommunicatorNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Jabber Softphone for VDINCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco ONS 15454 Series Multiservice Provisioning PlatformsNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Virtual Wireless ControllerNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Wide Area Application Services (WAAS) AppliancesNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco Policy Suite for MobileNCM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016 For Cisco WAN Automation Engine (WAE)NCM
CVE-2016-0702NCM
Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0702)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-1706057Security Update for Cisco Adaptive Security Appliance (ASA) Software 99.17(1.69)
PATCH-1705981Security Update for Cisco AnyConnect Secure Mobility Client 4.3(2034)
PATCH-1705634Security Update for Cisco Application and Content Networking System (ACNS) Software 3.0(0)A5(3.1a)
PATCH-1706007Security Update for Cisco Digital Content Manager (DCM) Software 20.0.0
PATCH-1706049Security Update for Cisco Emergency Responder 12.0(0.98000.50)
PATCH-1705887Security Update for Cisco Finesse 11.5(0.98000.126)
PATCH-1705811Security Update for Cisco Jabber for Windows 11.6(1.38147)
PATCH-1705783Security Update for Cisco Jabber Guest 10.6(11)
PATCH-1706051Security Update for Cisco Jabber Software Development Kit 11.8(2)
PATCH-1705879Security Update for Cisco MediaSense 11.5(1.10000.6)
PATCH-1705808Security Update for Cisco Mobility Services Engine 8.0(130.12)
PATCH-1706011Security Update for Cisco Paging Server 12.0(1)
PATCH-1701673Security Update for Cisco Plug-in for OpenFlow 4.12(0)SP1
PATCH-1705595Security Update for Cisco Prime Infrastructure 2.2(2)
PATCH-1701899Security Update for Cisco Prime Network 5.0(0.262)
PATCH-1701930Security Update for Cisco Prime Network Services Controller 21.2.A0.65491
PATCH-1706040Security Update for Cisco Prime Optical 10.6(1)
PATCH-1706037Security Update for Cisco Prime Performance Manager 1.7(0.1703)
PATCH-1705795Security Update for Cisco Security Manager 4.12(0.64)
PATCH-1704708Security Update for Cisco SocialMiner 12.0(0.99000.293)
PATCH-1705959Security Update for Cisco TelePresence Serial Gateway Series 1.0(1.52)
PATCH-1705943Security Update for Cisco Unified Contact Center Enterprise 11.6(1)SR0(0)
PATCH-1706052Security Update for Cisco Unified Contact Center Express 11.6(1)
PATCH-1705886Security Update for Cisco Unified Intelligence Center 11.5(0.98000.126)
PATCH-1706048Security Update for Cisco Unity Connection 12.0(0.97000.184)
PATCH-1705965Security Update for Cisco Video Surveillance 6000 Series IP Cameras 2.9
PATCH-1706003Security Update for Cisco IronPort Email Security Appliance Software 9.7.2-131
PATCH-1706033Security Update for Cisco IronPort Security Management Appliance Software 11.0.1-152
PATCH-1706032Security Update for Cisco ASR 5000 Series 21.3.A0.66703
PATCH-1705938Security Update for Cisco Firepower Management Center Virtual Appliance 6.1.0.1
PATCH-1705947Security Update for Cisco UCS Director 6.0(1.0)
PATCH-1706034Security Update for Cisco Data Center Network Manager 10.1(1.158)S0
PATCH-1705855Security Update for Cisco Intercloud Fabric 3.3(1)
PATCH-1705790Security Update for Cisco Nexus 7000 Series Switches 7.3(2)D1(1)
PATCH-1705949Security Update for Cisco Nexus 1000V Switch for VMware vSphere 5.2(1)SV3(3.1)
PATCH-1706036Security Update for Cisco Unified Computing System 3.2(1d)
PATCH-1705950Security Update for Cisco UCS Central Software 2.0(1a)
PATCH-1706038Security Update for Cisco Network Registrar 9.1
PATCH-1706039Security Update for Cisco Access Registrar 8.0
PATCH-1706008Security Update for Cisco Prime Network Analysis Module Software 6.2(3)
PATCH-1705997Security Update for Cisco Prime Collaboration 11.0(0.815)
PATCH-1705954Security Update for Cisco Video Networking Solutions 2.6.9
PATCH-1705955Security Update for Cisco TelePresence ISDN Gateway 2.2(1.122)
PATCH-1705864Security Update for Cisco TelePresence MCU 4500 Series 4.5(1.89)
PATCH-1705956Security Update for Cisco TelePresence MSE 8000 Series 2.3(1.51)
PATCH-1706042Security Update for Cisco Unified Communications Licensing 11.5(1.12001.2)
PATCH-1705797Security Update for Cisco Digital Media Manager 5.6.3
PATCH-1705866Security Update for Cisco TelePresence Content Server 7.2
PATCH-1705960Security Update for Cisco TelePresence Server 4.4(1.16)
PATCH-1706044Security Update for Cisco TelePresence Video Communication Server Software X8.9.2
PATCH-1705988Security Update for Cisco IPICS Server Software 4.10(2)
PATCH-1705867Security Update for Cisco Conductor 3.600
PATCH-1705993Security Update for Cisco Videoscape Distribution Suite for Internet Streaming 3.11(6.2)
PATCH-1705827Security Update for Cisco Enterprise CDN Software 5.5(41.2)
PATCH-1705897Security Update for Cisco ASA Next-Generation Firewall Services 100.6(0.0.181)
PATCH-1705964Security Update for Cisco Video Surveillance 4000 Series IP Cameras 2.4(6.310)
PATCH-1706045Security Update for Cisco Video Surveillance Manager 7.10
PATCH-1705754Security Update for Cisco IPS 4200 Series Sensors 7.3(5)P1
PATCH-1705670Security Update for Headend System Releases ecs-3.0.4
PATCH-1705803Security Update for Cisco DAVIC QPSK Devices qpsk2-2.2.2
PATCH-1705872Security Update for Cisco AS Series Media Processor Software CAL9.7
PATCH-1706047Security Update for Cisco Unified Attendant Consoles 11.0(2)
PATCH-1706016Security Update for Cisco Unified Communications Manager (CallManager) CUP.11.5(1.12900.25)
PATCH-1706050Security Update for Cisco Hosted Collaboration Solution (HCS) 11.5(1.93540.24)
PATCH-1705973Security Update for Cisco Unified MeetingPlace 8.6(2.45)
PATCH-1705918Security Update for Cisco SIP IP Phone Software 11.7(1)MN19
PATCH-1705386Security Update for Cisco IP Phone FW 7900 Series Software 9.4(2)TH1.1
PATCH-1705976Security Update for Cisco Unified Mobile Communicator 11.8(1.250274)
PATCH-1705883Security Update for Cisco Jabber Softphone for VDI 11.5(1)
PATCH-1705963Security Update for Cisco ONS 15454 Series Multiservice Provisioning Platforms 10.6(2)
PATCH-1705937Security Update for Cisco Virtual Wireless Controller 8.3(15.155)
PATCH-1706001Security Update for Cisco Wide Area Application Services (WAAS) Appliances 6.3(0.185)
PATCH-1705812Security Update for Cisco Policy Suite for Mobile 8.1.0
PATCH-1706046Security Update for Cisco WAN Automation Engine (WAE) v6.4.6dev-43-g887096e25e6
PATCH-602004macOS Mojave 10.14.6
PATCH-602005macOS Mojave 10.14.6 Combo Update
PATCH-602005macOS Mojave 10.14.6 Combo Update
PATCH-602004macOS Mojave 10.14.6
PATCH-602004macOS Mojave 10.14.6
PATCH-602005macOS Mojave 10.14.6 Combo Update
PATCH-602004macOS Mojave 10.14.6
PATCH-602005macOS Mojave 10.14.6 Combo Update
PATCH-602004macOS Mojave 10.14.6
PATCH-602004macOS Mojave 10.14.6

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234