Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2020-6825

Опубликовано: 08 апр. 2020
Источник: redhat
CVSS3: 9.8
EPSS Низкий

Описание

Mozilla developers and community members Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 74 and Firefox ESR 68.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.7.0, Firefox ESR < 68.7, and Firefox < 75.

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers reported memory safety bugs present in Firefox 74 and Firefox ESR 68.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5firefoxOut of support scope
Red Hat Enterprise Linux 5thunderbirdOut of support scope
Red Hat Enterprise Linux 6firefoxFixedRHSA-2020:142914.04.2020
Red Hat Enterprise Linux 6thunderbirdFixedRHSA-2020:148816.04.2020
Red Hat Enterprise Linux 7firefoxFixedRHSA-2020:142009.04.2020
Red Hat Enterprise Linux 7thunderbirdFixedRHSA-2020:148916.04.2020
Red Hat Enterprise Linux 8firefoxFixedRHSA-2020:140608.04.2020
Red Hat Enterprise Linux 8thunderbirdFixedRHSA-2020:149516.04.2020
Red Hat Enterprise Linux 8.0 Update Services for SAP SolutionsfirefoxFixedRHSA-2020:140408.04.2020
Red Hat Enterprise Linux 8.0 Update Services for SAP SolutionsthunderbirdFixedRHSA-2020:149616.04.2020

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-120
https://bugzilla.redhat.com/show_bug.cgi?id=1821682Mozilla: Memory safety bugs fixed in Firefox 75 and Firefox ESR 68.7

EPSS

Процентиль: 72%
0.00701
Низкий

9.8 Critical

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2020-6825

CVSS3: 9.8
ubuntu
почти 6 лет назад

Mozilla developers and community members Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 74 and Firefox ESR 68.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.7.0, Firefox ESR < 68.7, and Firefox < 75.

nvd логотип

CVE-2020-6825

CVSS3: 9.8
nvd
почти 6 лет назад

Mozilla developers and community members Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 74 and Firefox ESR 68.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.7.0, Firefox ESR < 68.7, and Firefox < 75.

debian логотип

CVE-2020-6825

CVSS3: 9.8
debian
почти 6 лет назад

Mozilla developers and community members Tyson Smith and Christian Hol ...

github логотип

GHSA-pj8r-w3xr-j4w5

github
больше 3 лет назад

Mozilla developers and community members Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 74 and Firefox ESR 68.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.7.0, Firefox ESR < 68.7, and Firefox < 75.

oracle-oval логотип

ELSA-2020-1429

oracle-oval
больше 5 лет назад

ELSA-2020-1429: firefox security update (IMPORTANT)

EPSS

Процентиль: 72%
0.00701
Низкий

9.8 Critical

CVSS3