PT-2020-13096 · Mozilla+3 · Firefox+3

Giorgio Maone

Published

2020-05-05

Updated

2024-12-12

CVE-2020-12390

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 76

Description The issue arises from incorrect origin serialization of URLs with IPv6 addresses, potentially leading to incorrect security checks.

Recommendations For versions prior to 76, update to version 76 or later to resolve the issue.

Fix

Deserialization of Untrusted Data

Found an issue in the description? Have something to add? Feel free to write us 👾

ALT-PU-2020-1943

ALT-PU-2020-2408

ALT-PU-2020-2933

ALT-PU-2020-3442

ALT-PU-2021-1368

ALT-PU-2021-3368

CVE-2020-12390

OPENSUSE-SU-2024:10600-1

OPENSUSE-SU-2024:14572-1

RHSA-2020:3557

USN-4353-1

USN-4353-2

Alt Linux

Firefox

Linuxmint

Ubuntu