CVE-2020-6829

CWE-327Broken Cryptographic Algorithm17 documents10 sources
Severity
5.3MEDIUM
EPSS
0.6%
top 30.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mozilla FirefoxMozilla Firefox FOR Android
Timeline
PublishedOct 28
Latest updateMay 24

Description

When performing EC scalar point multiplication, the wNAF point multiplication algorithm was used; which leaked partial information about the nonce used during signature generation. Given an electro-magnetic trace of a few signature generations, the private key could have been computed. This vulnerability affects Firefox < 80 and Firefox for Android < 80.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages5 packages

CVEListV5mozilla/firefox_for_androidunspecified80
CVEListV5mozilla/firefoxunspecified80
NVDmozilla/firefox< 80.0
Debiannss< 2:3.55-1+3
Ubuntunss< 2:3.28.4-0ubuntu0.16.04.13+3

🔴Vulnerability Details

5
GHSA
GHSA-cc99-55qg-f87r: When performing EC scalar point multiplication, the wNAF point multiplication algorithm was used; which leaked partial information about the nonce use2022-05-24
OSV
CVE-2020-6829: When performing EC scalar point multiplication, the wNAF point multiplication algorithm was used; which leaked partial information about the nonce use2020-10-28
CVEList
CVE-2020-6829: When performing EC scalar point multiplication, the wNAF point multiplication algorithm was used; which leaked partial information about the nonce use2020-10-28
OSV
firefox vulnerabilities2020-08-26
OSV
nss vulnerabilities2020-08-10

📋Vendor Advisories

7
Ubuntu
Firefox vulnerabilities2020-08-26
Ubuntu
NSS vulnerabilities2020-08-10
Red Hat
nss: Side channel attack on ECDSA signature generation2020-06-02
Oracle
Oracle Oracle Communications Applications Risk Matrix: General (libgcrypt) — CVE-2018-68292020-01-15
Debian
CVE-2020-6829: firefox - When performing EC scalar point multiplication, the wNAF point multiplication al...2020

💬Community

3
Bugzilla
CVE-2020-6829 nss: Side channel attack on ECDSA signature generation [fedora-all]2020-07-31
Bugzilla
CVE-2020-12401 nss: ECDSA timing attack mitigation bypass2020-06-26
Bugzilla
CVE-2020-6829 nss: Side channel attack on ECDSA signature generation2020-04-21
CVE-2020-6829 (MEDIUM CVSS 5.3) | When performing EC scalar point mul | cvebase.io