CVE-2020-12401 — Observable Discrepancy in Mozilla Firefox

CWE-203 — Observable Discrepancy CWE-327 — Use of a Broken or Risky Cryptographic Algorithm16 documents9 sources

Severity

4.7MEDIUMNVD

EPSS

0.2%

top 59.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Firefox FOR Android Mozilla NSS

Timeline

PublishedOct 8

Latest updateMay 24

Description

During ECDSA signature generation, padding applied in the nonce designed to ensure constant-time scalar multiplication was removed, resulting in variable-time execution dependent on secret data. This vulnerability affects Firefox < 80 and Firefox for Android < 80.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.0 | Impact: 3.6

Affected Packages5 packages

▶CVEListV5mozilla/firefox_for_androidunspecified — 80

▶CVEListV5mozilla/firefoxunspecified — 80

▶NVDmozilla/firefox< 80.0

▶Debianmozilla/nss< 2:3.55-1+3

▶Ubuntumozilla/nss< 2:3.28.4-0ubuntu0.16.04.13+3

🔴Vulnerability Details

GHSA

GHSA-cm2q-67xf-jw8c: During ECDSA signature generation, padding applied in the nonce designed to ensure constant-time scalar multiplication was removed, resulting in varia↗2022-05-24

▶

OSV

CVE-2020-12401: During ECDSA signature generation, padding applied in the nonce designed to ensure constant-time scalar multiplication was removed, resulting in varia↗2020-10-08

▶

CVEList

CVE-2020-12401: During ECDSA signature generation, padding applied in the nonce designed to ensure constant-time scalar multiplication was removed, resulting in varia↗2020-10-08

▶

OSV

firefox regressions↗2020-09-03

▶

OSV

firefox vulnerabilities↗2020-08-26

▶

📋Vendor Advisories

Ubuntu

Firefox vulnerabilities↗2020-08-26

▶

Ubuntu

NSS vulnerabilities↗2020-08-10

▶

Red Hat

nss: ECDSA timing attack mitigation bypass↗2020-06-30

▶

Debian

CVE-2020-12401: firefox - During ECDSA signature generation, padding applied in the nonce designed to ensu...↗2020

▶

Mozilla

Mozilla Foundation Security Advisory 2020-39: CVE-2020-12401↗

▶

💬Community

Bugzilla

CVE-2020-12401 nss: ECDSA timing attack mitigation bypass [fedora-all]↗2020-07-31

▶

Bugzilla

CVE-2020-12401 nss: ECDSA timing attack mitigation bypass [fedora-all]↗2020-07-31

▶

Bugzilla

CVE-2020-12401 nss: ECDSA timing attack mitigation bypass↗2020-06-26

▶