Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2020-15670
HistoryOct 01, 2020 - 7:15 p.m.

CVE-2020-15670

2020-10-0119:15:13
CWE-416
CWE-617
CWE-362
[email protected]
web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

75.2%

JSON

Mozilla developers reported memory safety bugs present in Firefox for Android 79. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 80, Firefox ESR < 78.2, Thunderbird < 78.2, and Firefox for Android < 80.

Affected configurations

NVD
Node
mozillafirefoxRange<80.0-
OR
mozillafirefoxRange<80.0android
OR
mozillafirefox_esrRange<78.2
OR
mozillathunderbirdRange<78.2

Related

cve 1
debiancve 1
cvelist 1
alpinelinux 1
veracode 1
prion 1
redhatcve 1
ubuntucve 1
nessus 13
openvas 14
mozilla 4
kaspersky 3
altlinux 2
suse 2
ubuntu 2
rosalinux 1
cve
cve
CVE-2020-15670
2020-10-01 19:15:13
debiancve
debiancve
CVE-2020-15670
2020-10-01 19:15:13
cvelist
cvelist
CVE-2020-15670
2020-10-01 18:41:52
alpinelinux
alpinelinux
CVE-2020-15670
2020-10-01 19:15:13
veracode
veracode
Arbitrary Code Execution
2020-08-31 03:46:15
prion
prion
Memory corruption
2020-10-01 19:15:00
redhatcve
redhatcve
CVE-2020-15670
2020-08-26 03:09:51
ubuntucve
ubuntucve
CVE-2020-15670
2020-08-26 00:00:00
nessus
nessus
openSUSE Security Update : MozillaFirefox (openSUSE-2020-1391)
2020-09-11 00:00:00
Mozilla Firefox ESR < 78.2
2020-08-25 00:00:00
Mozilla Thunderbird < 78.2
2020-08-26 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:2544-1)
2021-04-19 00:00:00
Mozilla Firefox ESR Security Advisories (MFSA2020-36, MFSA2020-38) - Mac OS X
2020-09-02 00:00:00
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2020:1391-1)
2020-09-09 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 78.2 — Mozilla
2020-08-25 00:00:00
Security Vulnerabilities fixed in Firefox ESR 78.2 — Mozilla
2020-08-25 00:00:00
Security Vulnerabilities fixed in Firefox for Android 80 — Mozilla
2020-09-02 00:00:00
kaspersky
kaspersky
KLA11947 Multiple vulnerabilties in Mozilla Thunderbird
2020-08-25 00:00:00
KLA11945 Multiple vulnerabilities in Mozilla Firefox ESR
2020-08-25 00:00:00
KLA11942 Multiple vulnerabilities in Mozilla Firefox
2020-08-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 78.2.1-alt1
2020-09-02 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 78.2.0-alt1
2020-08-25 00:00:00
suse
suse
Security update for MozillaFirefox (moderate)
2020-09-08 00:00:00
Security update for MozillaFirefox (moderate)
2020-09-09 00:00:00
ubuntu
ubuntu
Firefox regressions
2020-09-03 00:00:00
Firefox vulnerabilities
2020-08-26 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1835
2021-07-02 16:43:38

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

75.2%

JSON
Related for NVD:CVE-2020-15670
cve1debiancve1cvelist1alpinelinux1veracode1prion1redhatcve1ubuntucve1nessus13openvas14mozilla4kaspersky3altlinux2suse2ubuntu2rosalinux1