Mozilla Products Multiple Vulnerabilities
Last Update Date:
30 Jul 2020 10:56
Release Date:
30 Jul 2020
4540
Views
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Firefox and Thunderbird, a remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information disclosure, denial of service condition and bypass security restriction on the targeted system.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- Firefox version prior to 79
- Firefox ESR version prior to 78.1
- Thunderbird version prior to 78.1
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
Firefox 79
Firefox ESR 78.1
Thunderbird 78.1
Vulnerability Identifier
- CVE-2020-6463
- CVE-2020-6514
- CVE-2020-15652
- CVE-2020-15653
- CVE-2020-15654
- CVE-2020-15655
- CVE-2020-15656
- CVE-2020-15657
- CVE-2020-15658
- CVE-2020-15659
Source
Related Link
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-30/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-31/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-32/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-33/
- https://us-cert.cisa.gov/ncas/current-activity/2020/07/29/mozilla-releases-security-updates-multiple-products
Share with