Mozilla Firefox 124, Mozilla Firefox ESR 115.9, Mozilla Thunderbird 115.9 : NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack could potentially allow an attacker to recover the private data.