“SERVER HELLO is not enough, but CLIENT HELLO and SERVER HELLO are sufficient to decrypt HTTPS traffic.”
Not true, because if this was the case, all TLS traffic could be decrypted by network sniffing, as SERVER HELLO and CLIENT HELLO are plaintext. With RSA, the server and client random are combined with the premaster secret to create the session key, the premaster secret is encrypted when transmitted, with perfect forward secrecy, only the public keys are shared.