Multiple vulnerabilities in Mozilla Firefox

Description

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges.

Below is a complete list of vulnerabilities:

1. Out of bounds write vulnerability in GMPDecodeData can be exploited to execute arbitrary code.
2. Memory corruption vulnerability can be exploited to execute arbitrary code.
3. Uninitialized memory vulnerability in WebGL can be exploited to potentially obtain sensitive information.
4. Malicious extension vilnerabilites in OAuth login flows can be exploited to obtain sensitive information and gain privileges.
5. Browser session vulnerability can be exploited to obtain sensitive information and gain privileges.

Fiches de renseignement originales

• MFSA2020-12

Produits associés

• Mozilla-Firefox

Liste CVE

• CVE-2020-6822
  high
• CVE-2020-6825
  critical
• CVE-2020-6826
  critical
• CVE-2020-6821
  warning
• CVE-2020-6823
  critical
• CVE-2020-6824
  warning

En savoir plus

Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com