CVE-2020-12410

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-12410

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-12410.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-12410

Downstream

DEBIAN-CVE-2020-12410

DLA-2243-1

DLA-2247-1

DSA-4695-1

DSA-4702-1

RHSA-2020:2378

RHSA-2020:2379

RHSA-2020:2380

RHSA-2020:2381

RHSA-2020:2382

RHSA-2020:2611

RHSA-2020:2613

RHSA-2020:2614

RHSA-2020:2615

RHSA-2020:2616

SUSE-SU-2020:14389-1

SUSE-SU-2020:1556-1

SUSE-SU-2020:1563-1

SUSE-SU-2020:1591-1

SUSE-SU-2020:1591-2

UBUNTU-CVE-2020-12410

USN-4383-1

USN-4421-1

openSUSE-SU-2020:0789-1

openSUSE-SU-2020:0799-1

openSUSE-SU-2024:10601-1

Related

Published

2020-07-09T15:15:11Z

Modified

2025-08-09T20:01:26Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Mozilla developers reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firefox ESR < 68.9.

References

Affected packages