The Curious Case of WebCrypto Diffie-Hellman on Firefox - Small Subgroups Key Recovery Attack on DH
https://blog.intothesymmetry.com/2020/01/the-curious-case-of-webcrypto-diffie.html [blog.intothesymmetry.com]
2020-01-16 02:08
Mozilla Firefox prior to version 72 suffers from Small Subgroups Key Recovery Attack on DH in the WebCrypto’s API. The Firefox’s team fixed the issue removing completely support for DH over finite fields (that is not in the WebCrypto standard). If you find this interesting read further below.
source: green