PT-2021-11279 · Mozilla+1 · Firefox For Android+1

Andrew G

Published

2020-12-18

Updated

2024-12-12

CVE-2020-26977

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions: Firefox for Android versions prior to 84

Description: An issue exists where an attacker could control the content of a tab while the URL bar displays the original domain by attempting to connect a website using an unresponsive port. This issue only affects Firefox for Android, with other operating systems being unaffected.

Recommendations: For Firefox for Android versions prior to 84, update to version 84 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALT-PU-2020-3529

ALT-PU-2021-3368

CVE-2020-26977

OPENSUSE-SU-2024:10600-1

OPENSUSE-SU-2024:14572-1

Affected Products

Alt Linux

Firefox For Android

PT-2021-11279 · Mozilla+1 · Firefox For Android+1

CVE-2020-26977

Related Identifiers

Affected Products

References · 1868