firefox is vulnerable to command injection. The vulnerability exists as the Devtool’s Copy as cURL
feature did not fully escape website-controlled data, potentially leading to command injection.
access.redhat.com/errata/RHSA-2020:0815
access.redhat.com/security/updates/classification/#important
bugzilla.mozilla.org/show_bug.cgi?id=1607742
usn.ubuntu.com/4328-1/
usn.ubuntu.com/4335-1/
www.mozilla.org/security/advisories/mfsa2020-08/
www.mozilla.org/security/advisories/mfsa2020-09/
www.mozilla.org/security/advisories/mfsa2020-10/