CVE-2020-6825

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-6825

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-6825.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-6825

Downstream

DEBIAN-CVE-2020-6825

DLA-2170-1

DLA-2172-1

DSA-4655-1

DSA-4656-1

RHSA-2020:1404

RHSA-2020:1406

RHSA-2020:1420

RHSA-2020:1429

RHSA-2020:1488

RHSA-2020:1489

RHSA-2020:1495

RHSA-2020:1496

SUSE-SU-2020:0971-1

SUSE-SU-2020:0978-1

SUSE-SU-2020:1027-1

SUSE-SU-2020:14339-1

UBUNTU-CVE-2020-6825

USN-4323-1

USN-4328-1

USN-4335-1

openSUSE-SU-2020:0493-1

openSUSE-SU-2020:0520-1

openSUSE-SU-2020:0544-1

openSUSE-SU-2024:10600-1

openSUSE-SU-2024:10601-1

openSUSE-SU-2024:14572-1

Related

Published

2020-04-24T16:15:13Z

Modified

2025-08-09T20:01:26Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Mozilla developers and community members Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 74 and Firefox ESR 68.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.7.0, Firefox ESR < 68.7, and Firefox < 75.

References

Affected packages