openSUSE-SU-2020:1189

https://bugzilla.mozilla.org/show_bug.cgi?id=1648333

USN-4443-1

https://www.mozilla.org/security/advisories/mfsa2020-30/

https://www.mozilla.org/security/advisories/mfsa2020-32/

https://www.mozilla.org/security/advisories/mfsa2020-33/

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:4080 advisory.

  - Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer (CVE-2020-12422)

  - Mozilla: WebRTC permission prompt could have been bypassed by a compromised content process     (CVE-2020-12424)

  - Mozilla: Out of bound read in Date.parse() (CVE-2020-12425)

  - Mozilla: X-Frame-Options bypass using object or embed tags (CVE-2020-15648)

  - Mozilla: Bypassing iframe sandbox when allowing popups (CVE-2020-15653)

  - Mozilla: Custom cursor can overlay user interface (CVE-2020-15654)

  - Mozilla: Type confusion for special arguments in IonMonkey (CVE-2020-15656)

  - Mozilla: Overriding file type when saving to disk (CVE-2020-15658)

  - Mozilla: Memory safety bugs fixed in Firefox 81 and Firefox ESR 78.3 (CVE-2020-15673)

  - Mozilla: XSS when pasting attacker-controlled data into a contenteditable element (CVE-2020-15676)

  - Mozilla: Download origin spoofing via redirect (CVE-2020-15677)

  - Mozilla: When recursing through layers while scrolling, an iterator may have become invalid, resulting in     a potential use-after-free scenario (CVE-2020-15678)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Security Fix(es) :

  - Mozilla: Memory safety bugs fixed in Firefox 81 and     Firefox ESR 78.3 (CVE-2020-15673)

  - Mozilla: Integer overflow in     nsJPEGEncoder::emptyOutputBuffer (CVE-2020-12422)

  - Mozilla: X-Frame-Options bypass using object or embed     tags (CVE-2020-15648)

  - Mozilla: Bypassing iframe sandbox when allowing popups     (CVE-2020-15653)

  - Mozilla: Type confusion for special arguments in     IonMonkey (CVE-2020-15656)

  - Mozilla: XSS when pasting attacker-controlled data into     a contenteditable element (CVE-2020-15676)

  - Mozilla: Download origin spoofing via redirect     (CVE-2020-15677)

  - Mozilla: When recursing through layers while scrolling,     an iterator may have become invalid, resulting in a     potential use-after-free scenario (CVE-2020-15678)

  - Mozilla: WebRTC permission prompt could have been     bypassed by a compromised content process     (CVE-2020-12424)

  - Mozilla: Out of bound read in Date.parse()     (CVE-2020-12425)

  - Mozilla: Custom cursor can overlay user interface     (CVE-2020-15654)

  - Mozilla: Overriding file type when saving to disk     (CVE-2020-15658)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-4080 advisory.

  - In non-standard configurations, a JPEG image created by JavaScript could have caused an internal variable     to overflow, resulting in an out of bounds write, memory corruption, and a potentially exploitable crash.
    This vulnerability affects Firefox < 78. (CVE-2020-12422)

  - When constructing a permission prompt for WebRTC, a URI was supplied from the content process. This URI     was untrusted, and could have been the URI of an origin that was previously granted permission; bypassing     the prompt. This vulnerability affects Firefox < 78. (CVE-2020-12424)

  - Due to confusion processing a hyphen character in Date.parse(), a one-byte out of bounds read could have     occurred, leading to potential information disclosure. This vulnerability affects Firefox < 78.
    (CVE-2020-12425)

  - Using object or embed tags, it was possible to frame other websites, even if they disallowed framing using     the X-Frame-Options header. This vulnerability affects Thunderbird < 78 and Firefox < 78.0.2.
    (CVE-2020-15648)

  - An iframe sandbox element with the allow-popups flag could be bypassed when using noopener links. This     could have led to security issues for websites relying on sandbox configurations that allowed popups and     hosted arbitrary content. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird <     78.1. (CVE-2020-15653)

  - When in an endless loop, a website specifying a custom cursor using CSS could make it look like the user     is interacting with the user interface, when they are not. This could lead to a perceived broken state,     especially when interactions with existing browser dialogs and warnings do not work. This vulnerability     affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1. (CVE-2020-15654)

  - JIT optimizations involving the Javascript arguments object could confuse later optimizations. This risk     was already mitigated by various precautions in the code, resulting in this bug rated at only moderate     severity. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.
    (CVE-2020-15656)

  - The code for downloading files did not properly take care of special characters, which led to an attacker     being able to cut off the file ending at an earlier position, leading to a different file type being     downloaded than shown in the dialog. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and     Thunderbird < 78.1. (CVE-2020-15658)

  - Mozilla developers reported memory safety bugs present in Firefox 80 and Firefox ESR 78.2. Some of these     bugs showed evidence of memory corruption and we presume that with enough effort some of these could have     been exploited to run arbitrary code. This vulnerability affects Firefox < 81, Thunderbird < 78.3, and     Firefox ESR < 78.3. (CVE-2020-15673)

  - Firefox sometimes ran the onload handler for SVG elements that the DOM sanitizer decided to remove,     resulting in JavaScript being executed after pasting attacker-controlled data into a contenteditable     element. This vulnerability affects Firefox < 81, Thunderbird < 78.3, and Firefox ESR < 78.3.
    (CVE-2020-15676)

  - By exploiting an Open Redirect vulnerability on a website, an attacker could have spoofed the site     displayed in the download file dialog to show the original site (the one suffering from the open redirect)     rather than the site the file was actually downloaded from. This vulnerability affects Firefox < 81,     Thunderbird < 78.3, and Firefox ESR < 78.3. (CVE-2020-15677)

  - When recursing through graphical layers while scrolling, an iterator may have become invalid, resulting in     a potential use-after-free. This occurs because the function     APZCTreeManager::ComputeClippedCompositionBounds did not follow iterator invalidation rules. This     vulnerability affects Firefox < 81, Thunderbird < 78.3, and Firefox ESR < 78.3. (CVE-2020-15678)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-3557 advisory.

  - In non-standard configurations, a JPEG image created by JavaScript could have caused an internal variable     to overflow, resulting in an out of bounds write, memory corruption, and a potentially exploitable crash.
    This vulnerability affects Firefox < 78. (CVE-2020-12422)

  - When constructing a permission prompt for WebRTC, a URI was supplied from the content process. This URI     was untrusted, and could have been the URI of an origin that was previously granted permission; bypassing     the prompt. This vulnerability affects Firefox < 78. (CVE-2020-12424)

  - Due to confusion processing a hyphen character in Date.parse(), a one-byte out of bounds read could have     occurred, leading to potential information disclosure. This vulnerability affects Firefox < 78.
    (CVE-2020-12425)

  - Using object or embed tags, it was possible to frame other websites, even if they disallowed framing using     the X-Frame-Options header. This vulnerability affects Thunderbird < 78 and Firefox < 78.0.2.
    (CVE-2020-15648)

  - An iframe sandbox element with the allow-popups flag could be bypassed when using noopener links. This     could have led to security issues for websites relying on sandbox configurations that allowed popups and     hosted arbitrary content. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird <     78.1. (CVE-2020-15653)

  - When in an endless loop, a website specifying a custom cursor using CSS could make it look like the user     is interacting with the user interface, when they are not. This could lead to a perceived broken state,     especially when interactions with existing browser dialogs and warnings do not work. This vulnerability     affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1. (CVE-2020-15654)

  - JIT optimizations involving the Javascript arguments object could confuse later optimizations. This risk     was already mitigated by various precautions in the code, resulting in this bug rated at only moderate     severity. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.
    (CVE-2020-15656)

  - The code for downloading files did not properly take care of special characters, which led to an attacker     being able to cut off the file ending at an earlier position, leading to a different file type being     downloaded than shown in the dialog. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and     Thunderbird < 78.1. (CVE-2020-15658)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3557 advisory.

  - Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer (CVE-2020-12422)

  - Mozilla: WebRTC permission prompt could have been bypassed by a compromised content process     (CVE-2020-12424)

  - Mozilla: Out of bound read in Date.parse() (CVE-2020-12425)

  - Mozilla: X-Frame-Options bypass using object or embed tags (CVE-2020-15648)

  - Mozilla: Bypassing iframe sandbox when allowing popups (CVE-2020-15653)

  - Mozilla: Custom cursor can overlay user interface (CVE-2020-15654)

  - Mozilla: Type confusion for special arguments in IonMonkey (CVE-2020-15656)

  - Mozilla: Overriding file type when saving to disk (CVE-2020-15658)

  - Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)

  - Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3559 advisory.

  - Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer (CVE-2020-12422)

  - Mozilla: WebRTC permission prompt could have been bypassed by a compromised content process     (CVE-2020-12424)

  - Mozilla: Out of bound read in Date.parse() (CVE-2020-12425)

  - Mozilla: X-Frame-Options bypass using object or embed tags (CVE-2020-15648)

  - Mozilla: Bypassing iframe sandbox when allowing popups (CVE-2020-15653)

  - Mozilla: Custom cursor can overlay user interface (CVE-2020-15654)

  - Mozilla: Type confusion for special arguments in IonMonkey (CVE-2020-15656)

  - Mozilla: Overriding file type when saving to disk (CVE-2020-15658)

  - Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)

  - Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3555 advisory.

  - Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer (CVE-2020-12422)

  - Mozilla: WebRTC permission prompt could have been bypassed by a compromised content process     (CVE-2020-12424)

  - Mozilla: Out of bound read in Date.parse() (CVE-2020-12425)

  - Mozilla: X-Frame-Options bypass using object or embed tags (CVE-2020-15648)

  - Mozilla: Bypassing iframe sandbox when allowing popups (CVE-2020-15653)

  - Mozilla: Custom cursor can overlay user interface (CVE-2020-15654)

  - Mozilla: Type confusion for special arguments in IonMonkey (CVE-2020-15656)

  - Mozilla: Overriding file type when saving to disk (CVE-2020-15658)

  - Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)

  - Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

This update for MozillaFirefox fixes the following issues :

This update for MozillaFirefox and pipewire fixes the following issues :

MozillaFirefox Extended Support Release 78.1.0 ESR

  - Fixed: Various stability, functionality, and security     fixes (bsc#1174538)

  - CVE-2020-15652: Potential leak of redirect targets when     loading scripts in a worker

  - CVE-2020-6514: WebRTC data channel leaks internal     address to peer

  - CVE-2020-15655: Extension APIs could be used to bypass     Same-Origin Policy

  - CVE-2020-15653: Bypassing iframe sandbox when allowing     popups

  - CVE-2020-6463: Use-after-free in ANGLE     gl::Texture::onUnbindAsSamplerTexture

  - CVE-2020-15656: Type confusion for special arguments in     IonMonkey

  - CVE-2020-15658: Overriding file type when saving to disk

  - CVE-2020-15657: DLL hijacking due to incorrect loading     path

  - CVE-2020-15654: Custom cursor can overlay user interface

  - CVE-2020-15659: Memory safety bugs fixed in Firefox 79     and Firefox ESR 78.1

pipewire was updated to version 0.3.6 (bsc#1171433, jsc#ECO-2308) :

  - Extensive memory leak fixing and stress testing was     done. A big leak in screen sharing with DMA-BUF was     fixed.

  - Compile fixes

  - Stability improvements in jack and pulseaudio layers.

  - Added the old portal module to make the Camera portal     work again. This will be moved to the session manager in     future versions.

  - Improvements to the GStreamer source and sink shutdown.

  - Fix compatibility with v2 clients again when negotiating     buffers.

This update was imported from the SUSE:SLE-15-SP2:Update update project.

This update for MozillaFirefox fixes the following issues :

  - Firefox Extended Support Release 78.1.0 ESR

  - Fixed: Various stability, functionality, and security     fixes (bsc#1174538)

  - CVE-2020-15652: Potential leak of redirect targets when     loading scripts in a worker

  - CVE-2020-6514: WebRTC data channel leaks internal     address to peer

  - CVE-2020-15655: Extension APIs could be used to bypass     Same-Origin Policy

  - CVE-2020-15653: Bypassing iframe sandbox when allowing     popups

  - CVE-2020-6463: Use-after-free in ANGLE     gl::Texture::onUnbindAsSamplerTexture

  - CVE-2020-15656: Type confusion for special arguments in     IonMonkey

  - CVE-2020-15658: Overriding file type when saving to disk

  - CVE-2020-15657: DLL hijacking due to incorrect loading     path

  - CVE-2020-15654: Custom cursor can overlay user interface

  - CVE-2020-15659: Memory safety bugs fixed in Firefox 79     and Firefox ESR 78.1

This update was imported from the SUSE:SLE-15:Update update project.

This update for MozillaFirefox fixes the following issues :

This update for MozillaFirefox and pipewire fixes the following issues :

MozillaFirefox Extended Support Release 78.1.0 ESR

Fixed: Various stability, functionality, and security fixes (bsc#1174538)

CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker

CVE-2020-6514: WebRTC data channel leaks internal address to peer

CVE-2020-15655: Extension APIs could be used to bypass Same-Origin Policy

CVE-2020-15653: Bypassing iframe sandbox when allowing popups

CVE-2020-6463: Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture

CVE-2020-15656: Type confusion for special arguments in IonMonkey

CVE-2020-15658: Overriding file type when saving to disk

CVE-2020-15657: DLL hijacking due to incorrect loading path

CVE-2020-15654: Custom cursor can overlay user interface

CVE-2020-15659: Memory safety bugs fixed in Firefox 79 and Firefox ESR 78.1

pipewire was updated to version 0.3.6 (bsc#1171433, jsc#ECO-2308) :

Extensive memory leak fixing and stress testing was done. A big leak in screen sharing with DMA-BUF was fixed.

Compile fixes

Stability improvements in jack and pulseaudio layers.

Added the old portal module to make the Camera portal work again. This will be moved to the session manager in future versions.

Improvements to the GStreamer source and sink shutdown.

Fix compatibility with v2 clients again when negotiating buffers.

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for MozillaFirefox fixes the following issues :

Firefox Extended Support Release 78.1.0 ESR

  - Fixed: Various stability, functionality, and security     fixes (bsc#1174538)

  - CVE-2020-15652: Potential leak of redirect targets when     loading scripts in a worker

  - CVE-2020-6514: WebRTC data channel leaks internal     address to peer

  - CVE-2020-15655: Extension APIs could be used to bypass     Same-Origin Policy

  - CVE-2020-15653: Bypassing iframe sandbox when allowing     popups

  - CVE-2020-6463: Use-after-free in ANGLE     gl::Texture::onUnbindAsSamplerTexture

  - CVE-2020-15656: Type confusion for special arguments in     IonMonkey

  - CVE-2020-15658: Overriding file type when saving to disk

  - CVE-2020-15657: DLL hijacking due to incorrect loading     path

  - CVE-2020-15654: Custom cursor can overlay user interface

  - CVE-2020-15659: Memory safety bugs fixed in Firefox 79     and Firefox ESR 78.1

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The version of Thunderbird installed on the remote Windows host is prior to 78.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-33 advisory.

  - Inappropriate implementation in WebRTC in Google Chrome     prior to 84.0.4147.89 allowed an attacker in a     privileged network position to potentially exploit heap     corruption via a crafted SCTP stream. (CVE-2020-6514)

  - Use after free in ANGLE in Google Chrome prior to     81.0.4044.122 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page.
    (CVE-2020-6463)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 78.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-33 advisory.

  - Inappropriate implementation in WebRTC in Google Chrome     prior to 84.0.4147.89 allowed an attacker in a     privileged network position to potentially exploit heap     corruption via a crafted SCTP stream. (CVE-2020-6514)

  - Use after free in ANGLE in Google Chrome prior to     81.0.4044.122 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page.
    (CVE-2020-6463)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass iframe sandbox restrictions, confuse the user, or execute arbitrary code. (CVE-2020-6463, CVE-2020-6514, CVE-2020-15652, CVE-2020-15653, CVE-2020-15654, CVE-2020-15656, CVE-2020-15658, CVE-2020-15659) It was discovered that redirected HTTP requests which are observed or modified through a web extension could bypass existing CORS checks. If a user were tricked in to installing a specially crafted extension, an attacker could potentially exploit this to obtain sensitive information across origins. (CVE-2020-15655).

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The version of Firefox ESR installed on the remote Windows host is prior to 78.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-32 advisory.

  - Inappropriate implementation in WebRTC in Google Chrome     prior to 84.0.4147.89 allowed an attacker in a     privileged network position to potentially exploit heap     corruption via a crafted SCTP stream. (CVE-2020-6514)

  - Use after free in ANGLE in Google Chrome prior to     81.0.4044.122 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page.
    (CVE-2020-6463)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 78.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-32 advisory.

  - Inappropriate implementation in WebRTC in Google Chrome     prior to 84.0.4147.89 allowed an attacker in a     privileged network position to potentially exploit heap     corruption via a crafted SCTP stream. (CVE-2020-6514)

  - Use after free in ANGLE in Google Chrome prior to     81.0.4044.122 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page.
    (CVE-2020-6463)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Firefox installed on the remote Windows host is prior to 79.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-30 advisory.

  - Inappropriate implementation in WebRTC in Google Chrome     prior to 84.0.4147.89 allowed an attacker in a     privileged network position to potentially exploit heap     corruption via a crafted SCTP stream. (CVE-2020-6514)

  - Use after free in ANGLE in Google Chrome prior to     81.0.4044.122 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page.
    (CVE-2020-6463)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 79.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-30 advisory.

  - Inappropriate implementation in WebRTC in Google Chrome     prior to 84.0.4147.89 allowed an attacker in a     privileged network position to potentially exploit heap     corruption via a crafted SCTP stream. (CVE-2020-6514)

  - Use after free in ANGLE in Google Chrome prior to     81.0.4044.122 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page.
    (CVE-2020-6463)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
143085	RHEL 7 : firefox (RHSA-2020:4080)	Nessus	Red Hat Local Security Checks	high
141760	Scientific Linux Security Update : firefox on SL7.x x86_64 (20201001)	Nessus	Scientific Linux Local Security Checks	high
141414	Oracle Linux 7 : firefox (ELSA-2020-4080)	Nessus	Oracle Linux Local Security Checks	high
140042	Oracle Linux 8 : firefox (ELSA-2020-3557)	Nessus	Oracle Linux Local Security Checks	high
139854	RHEL 8 : firefox (RHSA-2020:3557)	Nessus	Red Hat Local Security Checks	high
139851	RHEL 8 : firefox (RHSA-2020:3559)	Nessus	Red Hat Local Security Checks	high
139811	RHEL 8 : firefox (RHSA-2020:3555)	Nessus	Red Hat Local Security Checks	high
139562	openSUSE Security Update : MozillaFirefox (openSUSE-2020-1189)	Nessus	SuSE Local Security Checks	high
139444	openSUSE Security Update : MozillaFirefox (openSUSE-2020-1155)	Nessus	SuSE Local Security Checks	high
139406	SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:2147-1)	Nessus	SuSE Local Security Checks	high
139360	SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:2118-1)	Nessus	SuSE Local Security Checks	high
139356	openSUSE Security Update : MozillaFirefox (openSUSE-2020-1147)	Nessus	SuSE Local Security Checks	high
139318	Mozilla Thunderbird < 78.1	Nessus	Windows	high
139317	Mozilla Thunderbird < 78.1	Nessus	MacOS X Local Security Checks	high
139282	SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:2100-1)	Nessus	SuSE Local Security Checks	high
139182	Ubuntu 16.04 LTS / 18.04 LTS / 20.04 : Firefox vulnerabilities (USN-4443-1)	Nessus	Ubuntu Local Security Checks	high
139074	Mozilla Firefox ESR < 78.1	Nessus	Windows	high
139073	Mozilla Firefox ESR < 78.1	Nessus	MacOS X Local Security Checks	high
139040	Mozilla Firefox < 79.0	Nessus	Windows	high
139039	Mozilla Firefox < 79.0	Nessus	MacOS X Local Security Checks	high

CVE-2020-15654

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins