Lucene search
Veracode Vulnerability DatabaseVERACODE:27145HistorySep 21, 2020 - 6:38 a.m.
Information Disclosure
2020-09-2106:38:51
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.002 Low
EPSS
Percentile
52.4%
firefox is vulnerable to information disclosure. The vulnerability exists as an error occurs in the elliptic curve point addition algorithm that uses mixed Jacobian-affine coordinates where it can yield a result “POINT_AT_INFINITY” when it should not.
| CPE | Name | Operator | Version |
|---|---|---|---|
| firefox:xenial | eq | 45.0 | |
| firefox:trusty | eq | 28.0 | |
| firefox:xenial | eq | 45.0 | |
| firefox:trusty | eq | 28.0 |
Related
cvelist
cvelist
CVE-2017-7781
2018-06-11 21:00:00
prion
prion
Code injection
2018-06-11 21:29:00
redhatcve
redhatcve
CVE-2017-7781
2017-08-09 01:51:02
ubuntucve
ubuntucve
CVE-2017-7781
2017-08-10 00:00:00
cve
cve
CVE-2017-7781
2018-06-11 21:29:08
debiancve
debiancve
CVE-2017-7781
2018-06-11 21:29:08
nvd
nvd
CVE-2017-7781
2018-06-11 21:29:08
intothesymmetry
intothesymmetry
nessus
nessus
RHEL 7 : mozilla (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : nss (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 6 : nss (Unpatched Vulnerability)
2024-06-03 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3391-2)
2017-08-17 00:00:00
Mozilla Firefox Security Advisories (MFSA2017-18, MFSA2017-19) - Mac OS X
2017-08-10 00:00:00
Ubuntu: Security Advisory (USN-3391-1)
2017-08-16 00:00:00
ubuntu
ubuntu
Ubufox update
2017-08-16 00:00:00
Firefox vulnerabilities
2017-08-15 00:00:00
Firefox regression
2017-08-17 00:00:00
archlinux
archlinux
[ASA-201708-3] firefox: multiple issues
2017-08-10 00:00:00
kaspersky
kaspersky
KLA11082 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2017-08-08 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2017-08-08 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox 55 — Mozilla
2017-08-08 00:00:00
ibm
ibm