Lucene search
Veracode Vulnerability DatabaseVERACODE:26114HistoryAug 06, 2020 - 9:32 p.m.
Information Disclosure
2020-08-0621:32:01
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.001 Low
EPSS
Percentile
45.7%
nss is vulnerable to information disclosure. An attacker is able to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation when using the EM side-channel. With the partial information of the ECDSA nonce and given a small number of ECDSA signatures, this information can be used to steal the private key. This vulnerability is similar to CVE-2020-6829.
Related
nessus
nessus
Fedora 32 : nss (2020-481c7e285d)
2020-08-18 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : NSS vulnerabilities (USN-4455-1)
2020-08-11 00:00:00
Fedora 31 : nss (2020-426fd04fd0)
2020-08-25 00:00:00
ubuntu
ubuntu
NSS vulnerabilities
2020-08-10 00:00:00
Firefox regressions
2020-09-03 00:00:00
Firefox vulnerabilities
2020-08-26 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4455-1)
2020-08-11 00:00:00
Huawei EulerOS: Security Advisory for nss (EulerOS-SA-2021-1249)
2021-02-05 00:00:00
Huawei EulerOS: Security Advisory for nss (EulerOS-SA-2021-1268)
2021-02-05 00:00:00
rocky
rocky
nss security and bug fix update
2021-02-16 07:32:47
f5
f5
osv
osv
Moderate: nss security and bug fix update
2021-02-16 07:32:47
CVE-2020-12401
2020-10-08 14:15:11
nss - security update
2023-02-20 00:00:00
redhat
redhat
cve
cve
CVE-2020-12401
2020-10-08 14:15:11
CVE-2020-6829
2020-10-28 12:15:12
redhatcve
redhatcve
CVE-2020-12401
2020-07-31 08:13:22
CVE-2020-6829
2020-07-31 08:13:18
fedora
fedora
[SECURITY] Fedora 32 Update: nss-3.55.0-1.fc32
2020-08-16 01:06:11
[SECURITY] Fedora 31 Update: nss-3.55.0-1.fc31
2020-08-25 01:17:14
debiancve
debiancve
CVE-2020-12401
2020-10-08 14:15:11
CVE-2020-6829
2020-10-28 12:15:12
nvd
nvd
CVE-2020-12401
2020-10-08 14:15:11
CVE-2020-6829
2020-10-28 12:15:12
ubuntucve
ubuntucve
CVE-2020-12401
2020-08-05 00:00:00
CVE-2020-6829
2020-08-05 00:00:00
alpinelinux
alpinelinux
CVE-2020-12401
2020-10-08 14:15:11
CVE-2020-6829
2020-10-28 12:15:12
prion
prion
Design/Logic Flaw
2020-10-08 14:15:00
Design/Logic Flaw
2020-10-28 12:15:00
cvelist
cvelist
CVE-2020-6829
2020-10-28 00:00:00
CVE-2020-12401
2020-10-08 00:00:00
debian
debian
[SECURITY] [DLA 3327-1] nss security update
2023-02-20 15:16:03
[SECURITY] [DLA 2388-1] nss security update
2020-09-29 19:15:28
veracode
veracode
Side Channel Attack
2020-08-06 21:38:52
mozilla
mozilla
Security Vulnerabilities fixed in Firefox for Android 80 — Mozilla
2020-09-02 00:00:00
Security Vulnerabilities fixed in Firefox 80 — Mozilla
2020-08-25 00:00:00
mageia
mageia
Updated firefox packages fix security vulnerability
2020-08-18 20:41:27
almalinux
almalinux
Moderate: nss security and bug fix update
2021-02-16 07:32:47
gentoo
gentoo
Mozilla Network Security Service (NSS): Multiple vulnerabilities
2020-08-19 00:00:00
oraclelinux
oraclelinux
nss security and bug fix update
2021-02-17 00:00:00
nss and nspr security, bug fix, and enhancement update
2020-10-08 00:00:00
amazon
amazon
Medium: nspr, nss-softokn, nss-util
2021-07-08 18:41:00
Medium: nspr, nss-softokn, nss-util, nss
2020-11-09 21:02:00
kaspersky
kaspersky
KLA11942 Multiple vulnerabilities in Mozilla Firefox
2020-08-25 00:00:00
centos
centos
nspr, nss security update
2020-11-06 22:01:52
rosalinux
rosalinux
Advisory ROSA-SA-2023-2223
2023-08-29 12:02:20
Advisory ROSA-SA-2021-1835
2021-07-02 16:43:38
ibm
ibm