Vulnerabilities > CVE-2020-12401 - Information Exposure Through Discrepancy vulnerability in Mozilla Firefox

CVSS 4.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

HIGH

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

high complexity

NVD

Published: 2020-10-08

Updated: 2023-02-20

Summary

During ECDSA signature generation, padding applied in the nonce designed to ensure constant-time scalar multiplication was removed, resulting in variable-time execution dependent on secret data. This vulnerability affects Firefox < 80 and Firefox for Android < 80.

Vulnerable Configurations

Part	Description	Count
Application	Mozilla Mozilla Firefox * Mozilla Firefox - Mozilla Firefox 0.1 Mozilla Firefox 0.2 Mozilla Firefox 0.3 Mozilla Firefox 0.4 Mozilla Firefox 0.5 Mozilla Firefox 0.6 Mozilla Firefox 0.6.1 Mozilla Firefox 0.7 Mozilla Firefox 0.7.1 Mozilla Firefox 0.8 Mozilla Firefox 0.9 Mozilla Firefox 0.9.1 Mozilla Firefox 0.9.2 Mozilla Firefox 0.9.3 Mozilla Firefox 0.10 Mozilla Firefox 0.10.1 Mozilla Firefox 1.0 Mozilla Firefox 1.0.1 Mozilla Firefox 1.0.2 Mozilla Firefox 1.0.3 Mozilla Firefox 1.0.4 Mozilla Firefox 1.0.5 Mozilla Firefox 1.0.6 Mozilla Firefox 1.0.7 Mozilla Firefox 1.0.8 Mozilla Firefox 1.4.1 Mozilla Firefox 1.5 Mozilla Firefox 1.5.0.1 Mozilla Firefox 1.5.0.2 Mozilla Firefox 1.5.0.3 Mozilla Firefox 1.5.0.4 Mozilla Firefox 1.5.0.5 Mozilla Firefox 1.5.0.6 Mozilla Firefox 1.5.0.7 Mozilla Firefox 1.5.0.8 Mozilla Firefox 1.5.0.9 Mozilla Firefox 1.5.0.10 Mozilla Firefox 1.5.0.11 Mozilla Firefox 1.5.0.12 Mozilla Firefox 1.5.1 Mozilla Firefox 1.5.2 Mozilla Firefox 1.5.3 Mozilla Firefox 1.5.4 Mozilla Firefox 1.5.5 Mozilla Firefox 1.5.6 Mozilla Firefox 1.5.7 Mozilla Firefox 1.5.8 Mozilla Firefox 1.8 Mozilla Firefox 2.0 Mozilla Firefox 2.0.0.1 Mozilla Firefox 2.0.0.2 Mozilla Firefox 2.0.0.3 Mozilla Firefox 2.0.0.4 Mozilla Firefox 2.0.0.5 Mozilla Firefox 2.0.0.6 Mozilla Firefox 2.0.0.7 Mozilla Firefox 2.0.0.8 Mozilla Firefox 2.0.0.9 Mozilla Firefox 2.0.0.10 Mozilla Firefox 2.0.0.11 Mozilla Firefox 2.0.0.12 Mozilla Firefox 2.0.0.13 Mozilla Firefox 2.0.0.14 Mozilla Firefox 2.0.0.15 Mozilla Firefox 2.0.0.16 Mozilla Firefox 2.0.0.17 Mozilla Firefox 2.0.0.18 Mozilla Firefox 2.0.0.19 Mozilla Firefox 2.0.0.20 Mozilla Firefox 3.0 Mozilla Firefox 3.0.1 Mozilla Firefox 3.0.2 Mozilla Firefox 3.0.3 Mozilla Firefox 3.0.4 Mozilla Firefox 3.0.5 Mozilla Firefox 3.0.6 Mozilla Firefox 3.0.7 Mozilla Firefox 3.0.8 Mozilla Firefox 3.0.9 Mozilla Firefox 3.0.10 Mozilla Firefox 3.0.11 Mozilla Firefox 3.0.12 Mozilla Firefox 3.0.13 Mozilla Firefox 3.0.14 Mozilla Firefox 3.0.15 Mozilla Firefox 3.0.16 Mozilla Firefox 3.0.17 Mozilla Firefox 3.0.18 Mozilla Firefox 3.0.19 Mozilla Firefox 3.5 Mozilla Firefox 3.5.1 Mozilla Firefox 3.5.2 Mozilla Firefox 3.5.3 Mozilla Firefox 3.5.4 Mozilla Firefox 3.5.5 Mozilla Firefox 3.5.6 Mozilla Firefox 3.5.7 Mozilla Firefox 3.5.8 Mozilla Firefox 3.5.9 Mozilla Firefox 3.5.10 Mozilla Firefox 3.5.11 Mozilla Firefox 3.5.12 Mozilla Firefox 3.5.13 Mozilla Firefox 3.5.14 Mozilla Firefox 3.5.15 Mozilla Firefox 3.5.16 Mozilla Firefox 3.5.17 Mozilla Firefox 3.5.18 Mozilla Firefox 3.5.19 Mozilla Firefox 3.6 Mozilla Firefox 3.6.2 Mozilla Firefox 3.6.3 Mozilla Firefox 3.6.4 Mozilla Firefox 3.6.6 Mozilla Firefox 3.6.7 Mozilla Firefox 3.6.8 Mozilla Firefox 3.6.9 Mozilla Firefox 3.6.10 Mozilla Firefox 3.6.11 Mozilla Firefox 3.6.12 Mozilla Firefox 3.6.13 Mozilla Firefox 3.6.14 Mozilla Firefox 3.6.15 Mozilla Firefox 3.6.16 Mozilla Firefox 3.6.17 Mozilla Firefox 3.6.18 Mozilla Firefox 3.6.19 Mozilla Firefox 3.6.20 Mozilla Firefox 3.6.21 Mozilla Firefox 3.6.22 Mozilla Firefox 3.6.23 Mozilla Firefox 3.6.24 Mozilla Firefox 3.6.25 Mozilla Firefox 3.6.26 Mozilla Firefox 3.6.27 Mozilla Firefox 3.6.28 Mozilla Firefox 4.0 Mozilla Firefox 4.0.1 Mozilla Firefox 5.0 Mozilla Firefox 5.0.1 Mozilla Firefox 6.0 Mozilla Firefox 6.0.1 Mozilla Firefox 6.0.2 Mozilla Firefox 7.0 Mozilla Firefox 7.0.1 Mozilla Firefox 8.0 Mozilla Firefox 8.0.1 Mozilla Firefox 9.0 Mozilla Firefox 9.0.1 Mozilla Firefox 10.0 Mozilla Firefox 10.0.1 Mozilla Firefox 10.0.2 Mozilla Firefox 10.0.3 Mozilla Firefox 10.0.4 Mozilla Firefox 10.0.5 Mozilla Firefox 10.0.6 Mozilla Firefox 10.0.7 Mozilla Firefox 10.0.8 Mozilla Firefox 10.0.9 Mozilla Firefox 10.0.10 Mozilla Firefox 10.0.11 Mozilla Firefox 10.0.12 Mozilla Firefox 11.0 Mozilla Firefox 12.0 Mozilla Firefox 13.0 Mozilla Firefox 13.0.1 Mozilla Firefox 14.0 Mozilla Firefox 14.0.1 Mozilla Firefox 15.0 Mozilla Firefox 15.0.1 Mozilla Firefox 15.1 Mozilla Firefox 16.0 Mozilla Firefox 16.0.1 Mozilla Firefox 16.0.2 Mozilla Firefox 16.1 Mozilla Firefox 16.2 Mozilla Firefox 17.0 Mozilla Firefox 17.0.1 Mozilla Firefox 17.0.2 Mozilla Firefox 17.0.3 Mozilla Firefox 17.0.4 Mozilla Firefox 17.0.5 Mozilla Firefox 17.0.6 Mozilla Firefox 17.0.7 Mozilla Firefox 17.0.8 Mozilla Firefox 17.0.9 Mozilla Firefox 17.0.10 Mozilla Firefox 17.0.11 Mozilla Firefox 17.1 Mozilla Firefox 17.2 Mozilla Firefox 17.3 Mozilla Firefox 18.0 Mozilla Firefox 18.0.1 Mozilla Firefox 18.0.2 Mozilla Firefox 18.1 Mozilla Firefox 18.2 Mozilla Firefox 19.0 Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2 Mozilla Firefox 19.1 Mozilla Firefox 20.0 Mozilla Firefox 20.0.1 Mozilla Firefox 20.1 Mozilla Firefox 20.2 Mozilla Firefox 21.0 Mozilla Firefox 22.0 Mozilla Firefox 23.0 Mozilla Firefox 23.0.1 Mozilla Firefox 24.0 Mozilla Firefox 24.1 Mozilla Firefox 24.1.0 Mozilla Firefox 24.1.1 Mozilla Firefox 24.2.0 Mozilla Firefox 24.3.0 Mozilla Firefox 24.4.0 Mozilla Firefox 24.5.0 Mozilla Firefox 24.6.0 Mozilla Firefox 24.7.0 Mozilla Firefox 24.8.0 Mozilla Firefox 24.8.1 Mozilla Firefox 25.0 Mozilla Firefox 25.0.1 Mozilla Firefox 25.1 Mozilla Firefox 26.0 Mozilla Firefox 27.0 Mozilla Firefox 27.0.1 Mozilla Firefox 28.0 Mozilla Firefox 29.0 Mozilla Firefox 29.0.1 Mozilla Firefox 30.0 Mozilla Firefox 31.0 Mozilla Firefox 31.1.0 Mozilla Firefox 31.1.1 Mozilla Firefox 31.2.0 Mozilla Firefox 31.3.0 Mozilla Firefox 31.4.0 Mozilla Firefox 31.5.0 Mozilla Firefox 31.5.2 Mozilla Firefox 31.5.3 Mozilla Firefox 31.6.0 Mozilla Firefox 31.7.0 Mozilla Firefox 31.8.0 Mozilla Firefox 32.0 Mozilla Firefox 32.0.1 Mozilla Firefox 32.0.2 Mozilla Firefox 32.0.3 Mozilla Firefox 33.0 Mozilla Firefox 33.0.1 Mozilla Firefox 33.0.2 Mozilla Firefox 33.0.3 Mozilla Firefox 33.1 Mozilla Firefox 33.1.1 Mozilla Firefox 34.0 Mozilla Firefox 34.0.5 Mozilla Firefox 35.0 Mozilla Firefox 35.0.1 Mozilla Firefox 36.0 Mozilla Firefox 36.0.1 Mozilla Firefox 36.0.3 Mozilla Firefox 36.0.4 Mozilla Firefox 37.0 Mozilla Firefox 37.0.1 Mozilla Firefox 37.0.2 Mozilla Firefox 38.0 Mozilla Firefox 38.0.1 Mozilla Firefox 38.0.5 Mozilla Firefox 38.1.0 Mozilla Firefox 38.1.1 Mozilla Firefox 38.2.0 Mozilla Firefox 38.2.1 Mozilla Firefox 38.3.0 Mozilla Firefox 38.4.0 Mozilla Firefox 38.5.0 Mozilla Firefox 38.5.1 Mozilla Firefox 38.5.2 Mozilla Firefox 38.6.0 Mozilla Firefox 38.6.1 Mozilla Firefox 38.7.0 Mozilla Firefox 38.7.1 Mozilla Firefox 38.8.0 Mozilla Firefox 39.0 Mozilla Firefox 39.0.3 Mozilla Firefox 40.0 Mozilla Firefox 40.0.2 Mozilla Firefox 40.0.3 Mozilla Firefox 41.0 Mozilla Firefox 41.0.1 Mozilla Firefox 41.0.2 Mozilla Firefox 42.0 Mozilla Firefox 43.0 Mozilla Firefox 43.0.1 Mozilla Firefox 43.0.2 Mozilla Firefox 43.0.3 Mozilla Firefox 43.0.4 Mozilla Firefox 44.0 Mozilla Firefox 44.0.1 Mozilla Firefox 44.0.2 Mozilla Firefox 45.0 Mozilla Firefox 45.0.1 Mozilla Firefox 45.0.2 Mozilla Firefox 45.1.1 Mozilla Firefox 45.2.0 Mozilla Firefox 45.3.0 Mozilla Firefox 45.4.0 Mozilla Firefox 45.5.0 Mozilla Firefox 45.5.1 Mozilla Firefox 45.6.0 Mozilla Firefox 45.7.0 Mozilla Firefox 45.8.0 Mozilla Firefox 45.9.0 Mozilla Firefox 46.0 Mozilla Firefox 46.0.1 Mozilla Firefox 47.0 Mozilla Firefox 47.0.1 Mozilla Firefox 47.0.2 Mozilla Firefox 48.0 Mozilla Firefox 48.0.1 Mozilla Firefox 48.0.2 Mozilla Firefox 49.0 Mozilla Firefox 49.0.1 Mozilla Firefox 49.0.2 Mozilla Firefox 50 Mozilla Firefox 50.0 Mozilla Firefox 50.0.1 Mozilla Firefox 50.0.2 Mozilla Firefox 50.1.0 Mozilla Firefox 51.0 Mozilla Firefox 51.0.1 Mozilla Firefox 51.0.3 Mozilla Firefox 52.0 Mozilla Firefox 52.0.1 Mozilla Firefox 52.0.2 Mozilla Firefox 52.1.0 Mozilla Firefox 52.1.1 Mozilla Firefox 52.1.2 Mozilla Firefox 52.2.0 Mozilla Firefox 52.2.1 Mozilla Firefox 52.3.0 Mozilla Firefox 52.4.0 Mozilla Firefox 52.4.1 Mozilla Firefox 52.5.0 Mozilla Firefox 52.5.2 Mozilla Firefox 52.5.3 Mozilla Firefox 52.6.0 Mozilla Firefox 52.7.0 Mozilla Firefox 52.7.1 Mozilla Firefox 52.7.2 Mozilla Firefox 52.7.3 Mozilla Firefox 52.7.4 Mozilla Firefox 52.8.0 Mozilla Firefox 52.8.1 Mozilla Firefox 52.9.0 Mozilla Firefox 53.0 Mozilla Firefox 53.0.2 Mozilla Firefox 53.0.3 Mozilla Firefox 54.0 Mozilla Firefox 54.0.1 Mozilla Firefox 55.0 Mozilla Firefox 55.0.1 Mozilla Firefox 55.0.2 Mozilla Firefox 55.0.3 Mozilla Firefox 56.0 Mozilla Firefox 56.0.1 Mozilla Firefox 56.0.2 Mozilla Firefox 57.0 Mozilla Firefox 57.0.1 Mozilla Firefox 57.0.2 Mozilla Firefox 57.0.3 Mozilla Firefox 57.0.4 Mozilla Firefox 58 Mozilla Firefox 58.0 Mozilla Firefox 58.0.1 Mozilla Firefox 58.0.2 Mozilla Firefox 59 Mozilla Firefox 59.0 Mozilla Firefox 59.0.1 Mozilla Firefox 59.0.2 Mozilla Firefox 59.0.3 Mozilla Firefox 60 Mozilla Firefox 60.0 Mozilla Firefox 60.0.1 Mozilla Firefox 60.0.2 Mozilla Firefox 60.1.0 Mozilla Firefox 60.2.0 Mozilla Firefox 60.2.1 Mozilla Firefox 60.2.2 Mozilla Firefox 60.3.0 Mozilla Firefox 60.4.0 Mozilla Firefox 60.5.0 Mozilla Firefox 60.6.1 Mozilla Firefox 60.7.3 Mozilla Firefox 61.0 Mozilla Firefox 61.0.1 Mozilla Firefox 61.0.2 Mozilla Firefox 62.0 Mozilla Firefox 62.0.2 Mozilla Firefox 62.0.3 Mozilla Firefox 63.0 Mozilla Firefox 63.0.1 Mozilla Firefox 63.0.3 Mozilla Firefox 64.0 Mozilla Firefox 64.0.2 Mozilla Firefox 65.0 Mozilla Firefox 65.0.1 Mozilla Firefox 65.0.2 Mozilla Firefox 66.0 Mozilla Firefox 66.0.1 Mozilla Firefox 66.0.2 Mozilla Firefox 66.0.3 Mozilla Firefox 66.0.4 Mozilla Firefox 66.0.5 Mozilla Firefox 67.0 Mozilla Firefox 67.0.2 Mozilla Firefox 67.0.3 Mozilla Firefox 67.0.4 Mozilla Firefox 68.0 Mozilla Firefox 68.0.1 Mozilla Firefox 68.0.2 Mozilla Firefox 68.1.0 Mozilla Firefox 68.2.0 Mozilla Firefox 68.3.0 Mozilla Firefox 68.4.0 Mozilla Firefox 68.4.1 Mozilla Firefox 68.6.0 Mozilla Firefox 69.0 Mozilla Firefox 69.0.1 Mozilla Firefox 69.0.2 Mozilla Firefox 69.0.3 Mozilla Firefox 70.0 Mozilla Firefox 70.0.1 Mozilla Firefox 71.0 Mozilla Firefox 72.0 Mozilla Firefox 72.0.1 Mozilla Firefox 72.0.2 Mozilla Firefox 73.0 Mozilla Firefox 73.0.1 Mozilla Firefox 74.0 Mozilla Firefox 74.0.1 Mozilla Firefox 75.0 Mozilla Firefox 76.0 Mozilla Firefox 76.0.1 Mozilla Firefox 77.0 Mozilla Firefox 77.0.1 Mozilla Firefox 78.0 Mozilla Firefox 78.0.1 Mozilla Firefox 78.0.2 Mozilla Firefox 79.0	504

Common Weakness Enumeration (CWE)

CWE-203 - Information Exposure Through Discrepancy

References

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.