Lucene search
MozillaCVELIST:CVE-2020-6828HistoryApr 24, 2020 - 3:48 p.m.
CVE-2020-6828
2020-04-2415:48:22
mozilla
www.cve.org
8
A malicious Android application could craft an Intent that would have been processed by Firefox for Android and potentially result in a file overwrite in the user’s profile directory. One exploitation vector for this would be to supply a user.js file providing arbitrary malicious preference values. Control of arbitrary preferences can lead to sufficient compromise such that it is generally equivalent to arbitrary code execution.<br> Note: This issue only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox ESR < 68.7.
CNA Affected
[
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "68.7",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
redhatcve
redhatcve
CVE-2020-6828
2020-04-08 02:05:44
nvd
nvd
CVE-2020-6828
2020-04-24 16:15:13
prion
prion
Design/Logic Flaw
2020-04-24 16:15:00
debiancve
debiancve
CVE-2020-6828
2020-04-24 16:15:13
cve
cve
CVE-2020-6828
2020-04-24 16:15:13
openvas
openvas
Mozilla Firefox ESR Security Advisories (MFSA2020-12, MFSA2020-13) - Windows
2020-04-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:0978-1)
2021-04-19 00:00:00
kaspersky
kaspersky
KLA11726 Multiple vulnerabilities in Mozilla Firefox ESR
2020-04-07 00:00:00
nessus
nessus
Mozilla Firefox ESR < 68.7 Multiple Vulnerabilities (mfsa2020-13)
2020-04-07 00:00:00
SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2020:14339-1)
2021-06-10 00:00:00
openSUSE Security Update : MozillaFirefox (openSUSE-2020-493)
2020-04-14 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2020-04-10 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 68.7 — Mozilla
2020-04-07 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2020-04-07 22:50:22
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 68.7.0-alt1
2020-04-06 00:00:00