Multiple vulnerabilities in Mozilla Firefox

Описание

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges.

Below is a complete list of vulnerabilities:

1. Out of bounds write vulnerability in GMPDecodeData can be exploited to execute arbitrary code.
2. Memory corruption vulnerability can be exploited to execute arbitrary code.
3. Uninitialized memory vulnerability in WebGL can be exploited to potentially obtain sensitive information.
4. Malicious extension vilnerabilites in OAuth login flows can be exploited to obtain sensitive information and gain privileges.
5. Browser session vulnerability can be exploited to obtain sensitive information and gain privileges.

Первичный источник обнаружения

• MFSA2020-12
  

Связанные продукты

• Mozilla-Firefox

Список CVE

• CVE-2020-6822
  high
• CVE-2020-6825
  critical
• CVE-2020-6826
  critical
• CVE-2020-6821
  warning
• CVE-2020-6823
  critical
• CVE-2020-6824
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com