CVE-2020-12403 - OpenCVE

A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Mozilla	Nss

Configuration 1 [-]

cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:*

References

Link	Resource
https://bugzilla.redhat.com/show_bug.cgi?id=1868931	Issue Tracking Patch Third Party Advisory
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.55_release_notes	Release Notes Vendor Advisory
https://lists.debian.org/debian-lts-announce/2023/02/msg00021.html
https://security.netapp.com/advisory/ntap-20230324-0006/

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mozilla

Published: 2021-05-27T00:00:00

Updated: 2023-03-24T00:00:00

Reserved: 2020-04-28T00:00:00

Link: CVE-2020-12403

JSON object: View

NVD Information

Status : Modified

Published: 2021-05-27T19:15:07.953

Modified: 2023-03-24T16:15:07.843

Link: CVE-2020-12403

JSON object: View

Redhat Information

No data.

CWE

CWE-125

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:*", "matchCriteriaId": "D021F308-A866-4FB1-ADF1-F00FDBFCCFF6", "versionEndExcluding": "3.55", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability."}, {"lang": "es", "value": "Se encontr\u00f3 un fallo en la manera en que se implement\u00f3 CHACHA20-POLY1305 en NSS en versiones anteriores a 3.55. Cuando es usado Chacha20 de m\u00faltiples partes, podr\u00eda causar lecturas fuera de l\u00edmites. Este problema fue corregido al desactivar expl\u00edcitamente ChaCha20 de m\u00faltiples partes (que no funcionaba correctamente) y aplicando estrictamente la longitud de la etiqueta. La mayor amenaza de esta vulnerabilidad es la confidencialidad y la disponibilidad del sistema"}], "id": "CVE-2020-12403", "lastModified": "2023-03-24T16:15:07.843", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-05-27T19:15:07.953", "references": [{"source": "security@mozilla.org", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1868931"}, {"source": "security@mozilla.org", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.55_release_notes"}, {"source": "security@mozilla.org", "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00021.html"}, {"source": "security@mozilla.org", "url": "https://security.netapp.com/advisory/ntap-20230324-0006/"}], "sourceIdentifier": "security@mozilla.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-125"}], "source": "security@mozilla.org", "type": "Secondary"}]}