CVE-2020-26974MEDIUM
Description
When flex-basis was used on a table wrapper, a StyleGenericFlexBasis object could have been incorrectly cast to the wrong type. This resulted in a heap user-after-free, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox < 84, Thunderbird < 78.6, and Firefox ESR < 78.6.
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1681022
https://www.mozilla.org/security/advisories/mfsa2020-54/
Details
Source: MITRE
Published: 2021-01-07
Updated: 2021-01-12
Type: CWE-787
Risk Information
CVSS v2.0
Base Score: 6.8
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8.6
Severity: MEDIUM
CVSS v3.0
Base Score: 8.8
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.8
Severity: HIGH
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 147399 | NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2021-0018) | Nessus | NewStart CGSL Local Security Checks | high |
| 147342 | NewStart CGSL MAIN 6.02 : thunderbird Multiple Vulnerabilities (NS-SA-2021-0091) | Nessus | NewStart CGSL Local Security Checks | medium |
| 147268 | NewStart CGSL MAIN 6.02 : firefox Multiple Vulnerabilities (NS-SA-2021-0089) | Nessus | NewStart CGSL Local Security Checks | medium |
| 145902 | CentOS 8 : firefox (CESA-2020:5562) | Nessus | CentOS Local Security Checks | medium |
| 145372 | openSUSE Security Update : MozillaFirefox (openSUSE-2020-2318) | Nessus | SuSE Local Security Checks | medium |
| 145362 | openSUSE Security Update : MozillaThunderbird (openSUSE-2020-2317) | Nessus | SuSE Local Security Checks | medium |
| 145332 | openSUSE Security Update : MozillaThunderbird (openSUSE-2020-2324) | Nessus | SuSE Local Security Checks | medium |
| 145294 | openSUSE Security Update : MozillaFirefox (openSUSE-2020-2325) | Nessus | SuSE Local Security Checks | medium |
| 145221 | Ubuntu 20.10 : Thunderbird vulnerabilities (USN-4701-1) | Nessus | Ubuntu Local Security Checks | high |
| 144798 | Amazon Linux 2 : thunderbird (ALAS-2021-1586) | Nessus | Amazon Linux Local Security Checks | high |
| 144589 | GLSA-202012-20 : Mozilla Firefox, Mozilla Thunderbird: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | medium |
| 144575 | SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:3903-1) | Nessus | SuSE Local Security Checks | medium |
| 144571 | SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:3902-1) | Nessus | SuSE Local Security Checks | medium |
| 144547 | CentOS 7 : thunderbird (CESA-2020:5618) | Nessus | CentOS Local Security Checks | medium |
| 144532 | SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:3901-1) | Nessus | SuSE Local Security Checks | medium |
| 144512 | RHEL 8 : thunderbird (RHSA-2020:5644) | Nessus | Red Hat Local Security Checks | high |
| 144511 | RHEL 8 : thunderbird (RHSA-2020:5645) | Nessus | Red Hat Local Security Checks | high |
| 144457 | Oracle Linux 8 : ELSA-2020-5624-1: / thunderbird (ELSA-2020-56241) | Nessus | Oracle Linux Local Security Checks | medium |
| 144447 | Oracle Linux 7 : ELSA-2020-5618-1: / thunderbird (ELSA-2020-56181) | Nessus | Oracle Linux Local Security Checks | medium |
| 144439 | Debian DLA-2497-1 : thunderbird security update | Nessus | Debian Local Security Checks | medium |
| 144426 | Debian DSA-4815-1 : thunderbird - security update | Nessus | Debian Local Security Checks | medium |
| 144422 | RHEL 8 : firefox (RHSA-2020:5562) | Nessus | Red Hat Local Security Checks | medium |
| 144416 | RHEL 8 : thunderbird (RHSA-2020:5624) | Nessus | Red Hat Local Security Checks | medium |
| 144413 | RHEL 8 : thunderbird (RHSA-2020:5622) | Nessus | Red Hat Local Security Checks | medium |
| 144406 | RHEL 8 : firefox (RHSA-2020:5563) | Nessus | Red Hat Local Security Checks | medium |
| 144403 | RHEL 8 : firefox (RHSA-2020:5565) | Nessus | Red Hat Local Security Checks | medium |
| 144397 | RHEL 7 : firefox (RHSA-2020:5561) | Nessus | Red Hat Local Security Checks | medium |
| 144386 | RHEL 7 : thunderbird (RHSA-2020:5618) | Nessus | Red Hat Local Security Checks | medium |
| 144381 | RHEL 8 : firefox (RHSA-2020:5564) | Nessus | Red Hat Local Security Checks | medium |
| 144374 | Oracle Linux 8 : ELSA-2020-5562-1: / firefox (ELSA-2020-55621) | Nessus | Oracle Linux Local Security Checks | medium |
| 144368 | Scientific Linux Security Update : thunderbird on SL7.x x86_64 (2020:5618) | Nessus | Scientific Linux Local Security Checks | medium |
| 144367 | Scientific Linux Security Update : firefox on SL7.x i686/x86_64 (2020:5561) | Nessus | Scientific Linux Local Security Checks | medium |
| 144353 | Debian DSA-4813-1 : firefox-esr - security update | Nessus | Debian Local Security Checks | medium |
| 144350 | Debian DLA-2496-1 : firefox-esr security update | Nessus | Debian Local Security Checks | medium |
| 144340 | Oracle Linux 7 : ELSA-2020-5561-1: / firefox (ELSA-2020-55611) | Nessus | Oracle Linux Local Security Checks | medium |
| 144299 | Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 20.10 : Firefox vulnerabilities (USN-4671-1) | Nessus | Ubuntu Local Security Checks | high |
| 144285 | Mozilla Thunderbird < 78.6 | Nessus | MacOS X Local Security Checks | medium |
| 144284 | Mozilla Thunderbird < 78.6 | Nessus | Windows | medium |
| 144283 | Mozilla Firefox < 84.0 | Nessus | MacOS X Local Security Checks | high |
| 144282 | Mozilla Firefox < 84.0 | Nessus | Windows | high |
| 144278 | Mozilla Firefox ESR < 78.6 | Nessus | Windows | medium |
| 144277 | Mozilla Firefox ESR < 78.6 | Nessus | MacOS X Local Security Checks | medium |