Mozilla Products Multiple Vulnerabilities
Last Update Date:
18 Nov 2020 10:21
Release Date:
18 Nov 2020
4834
Views
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla products, a remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting, denial of service, elevation of privilege, remote code execution, security restriction bypass and sensitive information disclosure on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
Versions prior to:
- Firefox 83
- Firefox ESR 78.5
- Thunderbird 78.5
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 83
- Firefox ESR 78.5
- Thunderbird 78.5
Vulnerability Identifier
- CVE-2020-15999
- CVE-2020-16012
- CVE-2020-26951
- CVE-2020-26952
- CVE-2020-26953
- CVE-2020-26954
- CVE-2020-26955
- CVE-2020-26956
- CVE-2020-26957
- CVE-2020-26958
- CVE-2020-26959
- CVE-2020-26960
- CVE-2020-26961
- CVE-2020-26962
- CVE-2020-26963
- CVE-2020-26964
- CVE-2020-26965
- CVE-2020-26966
- CVE-2020-26967
- CVE-2020-26968
- CVE-2020-26969
Source
Related Link
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-51/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-52/
- https://www.auscert.org.au/bulletins/ESB-2020.4080/
- https://www.auscert.org.au/bulletins/ESB-2020.4081/
- https://www.auscert.org.au/bulletins/ESB-2020.4082/
Share with