Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-15657

Опубликовано: 10 авг. 2020
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.9
CVSS3: 7.8

Описание

Firefox could be made to load attacker-supplied DLL files from the installation directory. This required an attacker that is already capable of placing files in the installation directory. Note: This issue only affected Windows operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.

РелизСтатусПримечание
bionic

not-affected

Windows only
devel

not-affected

Windows only
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

not-affected

Windows only
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

upstream

released

79
xenial

not-affected

Windows only

Показывать по

Ссылки на источники

EPSS

Процентиль: 42%
0.00199
Низкий

6.9 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-15657

CVSS3: 7.3
redhat
больше 5 лет назад

Firefox could be made to load attacker-supplied DLL files from the installation directory. This required an attacker that is already capable of placing files in the installation directory. *Note: This issue only affected Windows operating systems. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.

nvd логотип

CVE-2020-15657

CVSS3: 7.8
nvd
больше 5 лет назад

Firefox could be made to load attacker-supplied DLL files from the installation directory. This required an attacker that is already capable of placing files in the installation directory. *Note: This issue only affected Windows operating systems. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.

debian логотип

CVE-2020-15657

CVSS3: 7.8
debian
больше 5 лет назад

Firefox could be made to load attacker-supplied DLL files from the ins ...

github логотип

GHSA-vxw8-wvxp-5f2r

github
больше 3 лет назад

Firefox could be made to load attacker-supplied DLL files from the installation directory. This required an attacker that is already capable of placing files in the installation directory. *Note: This issue only affected Windows operating systems. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.

suse-cvrf логотип

openSUSE-SU-2020:1189-1

suse-cvrf
больше 5 лет назад

Security update for MozillaFirefox

EPSS

Процентиль: 42%
0.00199
Низкий

6.9 Medium

CVSS2

7.8 High

CVSS3