Vulnerability Description
BIP-143 in the Bitcoin protocol specification mishandles the signing of a Segwit transaction, which allows attackers to trick a user into making two signatures in certain cases, potentially leading to a huge transaction fee. NOTE: this affects all hardware wallets. It was fixed in 1.9.1 for the Trezor One and 2.3.1 for the Trezor Model T.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Satoshilabs | Trezor Model T Firmware | < 2.3.1 |
| Satoshilabs | Trezor Model T | - |
| Satoshilabs | Trezor One Firmware | < 1.9.1 |
| Satoshilabs | Trezor One | - |
Related Weaknesses (CWE)
References
- https://blog.trezor.io/details-of-firmware-updates-for-trezor-one-version-1-9-1-Third Party Advisory
- https://blog.trezor.io/details-of-firmware-updates-for-trezor-one-version-1-9-1-Third Party Advisory
FAQ
What is CVE-2020-14199?
CVE-2020-14199 is a vulnerability with a CVSS score of 6.5 (MEDIUM). BIP-143 in the Bitcoin protocol specification mishandles the signing of a Segwit transaction, which allows attackers to trick a user into making two signatures in certain cases, potentially leading to...
How severe is CVE-2020-14199?
CVE-2020-14199 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-14199?
Check the references section above for vendor advisories and patch information. Affected products include: Satoshilabs Trezor Model T Firmware, Satoshilabs Trezor Model T, Satoshilabs Trezor One Firmware, Satoshilabs Trezor One.