PT-2020-13098 · Mozilla+2 · Firefox+3

David Yesland

Published

2020-05-05

Updated

2024-12-12

CVE-2020-12393

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Firefox ESR versions prior to 68.8 Firefox versions prior to 76 Thunderbird versions prior to 68.8.0

Description The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command execution. This issue only affects Firefox on Windows operating systems.

Recommendations For Firefox ESR versions prior to 68.8, update to version 68.8 or later. For Firefox versions prior to 76, update to version 76 or later. For Thunderbird versions prior to 68.8.0, update to version 68.8.0 or later. As a temporary workaround, consider avoiding the use of the 'Copy as cURL' feature in the Devtools' network tab until a patch is applied.

Exploit

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

ALT-PU-2020-1915

ALT-PU-2020-1932

ALT-PU-2020-1933

ALT-PU-2020-1943

ALT-PU-2020-3442

ALT-PU-2021-3368

CVE-2020-12393

OPENSUSE-SU-2020:0621-1

OPENSUSE-SU-2020:0643-1

OPENSUSE-SU-2020_0621-1

OPENSUSE-SU-2020_0643-1

OPENSUSE-SU-2024:10600-1

OPENSUSE-SU-2024:10601-1

OPENSUSE-SU-2024:14572-1

SUSE-SU-2020:1209-1

SUSE-SU-2020:1218-1

SUSE-SU-2020:1225-1

SUSE-SU-2020:14359-1

Affected Products

Alt Linux

Firefox

Suse

Thunderbird

PT-2020-13098 · Mozilla+2 · Firefox+3

CVE-2020-12393

Weakness Enumeration

Related Identifiers

Affected Products

References · 1991