Mozilla Products Multiple Vulnerabilities
Last Update Date:
27 Aug 2020 10:10
Release Date:
27 Aug 2020
4590
Views
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Firefox, a remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, spoofing, remote code execution, and sensitive information disclosure on the targeted system.
Impact
- Elevation of Privilege
- Remote Code Execution
- Information Disclosure
- Spoofing
System / Technologies affected
Versions prior to:
- Firefox 80
- Firefox ESR 68.12
- Thunderbird 68.12
- Thunderbird 78.2
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 80
- Firefox ESR 68.12
- Thunderbird 68.12
- Thunderbird 78.2
Vulnerability Identifier
- CVE-2020-15663
- CVE-2020-15664
- CVE-2020-12401
- CVE-2020-6829
- CVE-2020-12400
- CVE-2020-15665
- CVE-2020-15666
- CVE-2020-15667
- CVE-2020-15668
- CVE-2020-15669
- CVE-2020-15670
Source
Related Link
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-40/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-41/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-36/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-37/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-38/
- https://us-cert.cisa.gov/ncas/current-activity/2020/08/26/mozilla-releases-security-updates-firefox-firefox-esr-and
Share with