Information Disclosure

2020-08-0621:32:01

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

JSON

nss is vulnerable to information disclosure. An attacker is able to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation when using the EM side-channel. With the partial information of the ECDSA nonce and given a small number of ECDSA signatures, this information can be used to steal the private key. This vulnerability is similar to CVE-2020-6829.

CPENameOperatorVersion
nss:3.12eq3.52-r0
nss:3.12eq3.52.1-r0
firefox:3.12eq76.0.1-r1
firefox:3.12eq76.0.1-r0
firefox:bioniceq59.0.2+build1
firefox:focaleq75.0+build3
firefox:xenialeq45.0.2+build1
nspreq4.21.0__1.el7
nspreq4.19.0__1.el7_5
nspreq4.10.8__1.ael7b_1

Name	Operator	Version
nss:3.12	eq	3.52-r0
nss:3.12	eq	3.52.1-r0
firefox:3.12	eq	76.0.1-r1
firefox:3.12	eq	76.0.1-r0
firefox:bionic	eq	59.0.2+build1
firefox:focal	eq	75.0+build3
firefox:xenial	eq	45.0.2+build1
nspr	eq	4.21.0__1.el7
nspr	eq	4.19.0__1.el7_5
nspr	eq	4.10.8__1.ael7b_1