CVE-2020-26961MEDIUM
Description
When DNS over HTTPS is in use, it intentionally filters RFC1918 and related IP ranges from the responses as these do not make sense coming from a DoH resolver. However when an IPv4 address was mapped through IPv6, these addresses were erroneously let through, leading to a potential DNS Rebinding attack. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1672528
https://www.mozilla.org/security/advisories/mfsa2020-50/
Details
Source: MITRE
Published: 2020-12-09
Updated: 2020-12-10
Type: NVD-CWE-noinfo
Risk Information
CVSS v2.0
Base Score: 4.3
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Impact Score: 2.9
Exploitability Score: 8.6
Severity: MEDIUM
CVSS v3.0
Base Score: 6.5
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Impact Score: 3.6
Exploitability Score: 2.8
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 147399 | NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2021-0018) | Nessus | NewStart CGSL Local Security Checks | high |
| 147352 | NewStart CGSL MAIN 6.02 : firefox Multiple Vulnerabilities (NS-SA-2021-0065) | Nessus | NewStart CGSL Local Security Checks | high |
| 147286 | NewStart CGSL MAIN 6.02 : thunderbird Multiple Vulnerabilities (NS-SA-2021-0081) | Nessus | NewStart CGSL Local Security Checks | high |
| 146200 | Oracle Linux 6 : firefox (ELSA-2020-5257) | Nessus | Oracle Linux Local Security Checks | high |
| 146197 | Oracle Linux 6 : thunderbird (ELSA-2020-5238) | Nessus | Oracle Linux Local Security Checks | high |
| 145963 | CentOS 8 : firefox (CESA-2020:5237) | Nessus | CentOS Local Security Checks | high |
| 145368 | openSUSE Security Update : MozillaFirefox (openSUSE-2020-2315) | Nessus | SuSE Local Security Checks | high |
| 145070 | RHEL 8 : firefox (RHSA-2020:5314) | Nessus | Red Hat Local Security Checks | high |
| 144798 | Amazon Linux 2 : thunderbird (ALAS-2021-1586) | Nessus | Amazon Linux Local Security Checks | high |
| 144004 | CentOS 7 : firefox (CESA-2020:5239) | Nessus | CentOS Local Security Checks | high |
| 143910 | CentOS 7 : thunderbird (CESA-2020:5235) | Nessus | CentOS Local Security Checks | high |
| 143745 | SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:3383-1) | Nessus | SuSE Local Security Checks | high |
| 143741 | SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:3548-1) | Nessus | SuSE Local Security Checks | high |
| 143723 | SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:3458-1) | Nessus | SuSE Local Security Checks | high |
| 143540 | openSUSE Security Update : MozillaThunderbird (openSUSE-2020-2187) | Nessus | SuSE Local Security Checks | high |
| 143531 | GLSA-202012-04 : Mozilla Thunderbird: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 143494 | GLSA-202012-03 : Mozilla Firefox: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 143378 | Oracle Linux 7 : firefox (ELSA-2020-5239) | Nessus | Oracle Linux Local Security Checks | high |
| 143377 | Oracle Linux 8 : firefox (ELSA-2020-5237) | Nessus | Oracle Linux Local Security Checks | high |
| 143372 | Oracle Linux 8 : thunderbird (ELSA-2020-5236) | Nessus | Oracle Linux Local Security Checks | high |
| 143371 | Scientific Linux Security Update : firefox on SL6.x i686/x86_64 (2020:5257) | Nessus | Scientific Linux Local Security Checks | high |
| 143370 | RHEL 7 : firefox (RHSA-2020:5239) | Nessus | Red Hat Local Security Checks | high |
| 143369 | RHEL 7 : thunderbird (RHSA-2020:5235) | Nessus | Red Hat Local Security Checks | high |
| 143368 | Oracle Linux 7 : thunderbird (ELSA-2020-5235) | Nessus | Oracle Linux Local Security Checks | high |
| 143366 | RHEL 6 : firefox (RHSA-2020:5257) | Nessus | Red Hat Local Security Checks | high |
| 143365 | RHEL 8 : firefox (RHSA-2020:5237) | Nessus | Red Hat Local Security Checks | high |
| 143361 | Scientific Linux Security Update : thunderbird on SL6.x i686/x86_64 (2020:5238) | Nessus | Scientific Linux Local Security Checks | high |
| 143360 | Scientific Linux Security Update : firefox on SL7.x x86_64 (2020:5239) | Nessus | Scientific Linux Local Security Checks | high |
| 143359 | Scientific Linux Security Update : thunderbird on SL7.x i686/x86_64 (2020:5235) | Nessus | Scientific Linux Local Security Checks | high |
| 143357 | openSUSE Security Update : MozillaThunderbird (openSUSE-2020-2096) | Nessus | SuSE Local Security Checks | high |
| 143352 | openSUSE Security Update : MozillaFirefox (openSUSE-2020-2020) | Nessus | SuSE Local Security Checks | high |
| 143340 | openSUSE Security Update : MozillaFirefox (openSUSE-2020-2031) | Nessus | SuSE Local Security Checks | high |
| 143281 | RHEL 8 : thunderbird (RHSA-2020:5232) | Nessus | Red Hat Local Security Checks | high |
| 143280 | RHEL 8 : firefox (RHSA-2020:5233) | Nessus | Red Hat Local Security Checks | high |
| 143279 | RHEL 8 : thunderbird (RHSA-2020:5231) | Nessus | Red Hat Local Security Checks | high |
| 143278 | RHEL 6 : thunderbird (RHSA-2020:5238) | Nessus | Red Hat Local Security Checks | high |
| 143277 | RHEL 8 : thunderbird (RHSA-2020:5240) | Nessus | Red Hat Local Security Checks | high |
| 143276 | RHEL 8 : thunderbird (RHSA-2020:5236) | Nessus | Red Hat Local Security Checks | high |
| 143275 | RHEL 8 : firefox (RHSA-2020:5234) | Nessus | Red Hat Local Security Checks | high |
| 143267 | Ubuntu 20.10 : Thunderbird vulnerabilities (USN-4647-1) | Nessus | Ubuntu Local Security Checks | high |
| 143224 | Debian DLA-2464-1 : thunderbird security update | Nessus | Debian Local Security Checks | high |
| 143191 | Debian DSA-4796-1 : thunderbird - security update | Nessus | Debian Local Security Checks | high |
| 143133 | Debian DLA-2457-1 : firefox-esr security update | Nessus | Debian Local Security Checks | high |
| 143130 | Debian DSA-4793-1 : firefox-esr - security update | Nessus | Debian Local Security Checks | high |
| 143127 | Ubuntu 16.04 LTS : Firefox vulnerabilities (USN-4637-2) | Nessus | Ubuntu Local Security Checks | high |
| 143121 | Ubuntu 18.04 LTS / 20.04 LTS / 20.10 : Firefox vulnerabilities (USN-4637-1) | Nessus | Ubuntu Local Security Checks | high |
| 143059 | Mozilla Thunderbird < 78.5 | Nessus | MacOS X Local Security Checks | high |
| 143058 | Mozilla Thunderbird < 78.5 | Nessus | Windows | high |
| 142913 | Mozilla Firefox ESR < 78.5 | Nessus | Windows | high |
| 142912 | Mozilla Firefox ESR < 78.5 | Nessus | MacOS X Local Security Checks | high |
| 142911 | Mozilla Firefox < 83.0 | Nessus | MacOS X Local Security Checks | high |
| 142910 | Mozilla Firefox < 83.0 | Nessus | Windows | high |