CVE-2020-12399
CVSS v3.1
4.4 (Medium)
CVSS v2.0
1.2 (Low)
EPSS
0.06 % (28th)
Affected Products
4
Advisories
19
NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firefox ESR < 68.9.
Weaknesses
- CWE-203
- Observable Discrepancy
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2020-07-09 15:15:10
(4 years ago) - Updated Date
-
2022-01-04 16:38:55
(2 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...