Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2020-26975 | First vendor Publication | 2021-01-07 |
Vendor | Cve | Last vendor Modification | 2021-01-12 |
Security-Database Scoring CVSS v3
Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N | |||
---|---|---|---|
Overall CVSS Score | 6.5 | ||
Base Score | 6.5 | Environmental Score | 6.5 |
impact SubScore | 3.6 | Temporal Score | 6.5 |
Exploitabality Sub Score | 2.8 | ||
Attack Vector | Network | Attack Complexity | Low |
Privileges Required | None | User Interaction | Required |
Scope | Unchanged | Confidentiality Impact | None |
Integrity Impact | High | Availability Impact | None |
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N) | |||
---|---|---|---|
Cvss Base Score | 4.3 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
When a malicious application installed on the user's device broadcast an Intent to Firefox for Android, arbitrary headers could have been specified, leading to attacks such as abusing ambient authority or session fixation. This was resolved by only allowing certain safe-listed headers. *Note: This issue only affected Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 84. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26975 |
CPE : Common Platform Enumeration
Sources (Detail)
Source | Url |
---|---|
MISC | https://bugzilla.mozilla.org/show_bug.cgi?id=1661071 https://www.mozilla.org/security/advisories/mfsa2020-54/ |
Alert History
Date | Informations |
---|---|
2024-02-10 02:08:38 |
|
2024-02-02 02:15:30 |
|
2024-02-01 12:20:39 |
|
2023-09-05 13:09:57 |
|
2023-09-05 01:20:16 |
|
2023-09-02 13:08:45 |
|
2023-09-02 01:20:33 |
|
2023-08-12 13:13:29 |
|
2023-08-12 01:19:48 |
|
2023-08-11 13:06:33 |
|
2023-08-11 01:20:27 |
|
2023-08-06 13:04:48 |
|
2023-08-06 01:19:38 |
|
2023-08-04 13:05:09 |
|
2023-08-04 01:19:55 |
|
2023-07-14 13:05:09 |
|
2023-07-14 01:19:46 |
|
2023-04-01 01:54:56 |
|
2023-03-29 02:07:46 |
|
2023-03-28 12:20:00 |
|
2022-10-11 12:58:09 |
|
2022-10-11 01:19:35 |
|
2021-05-04 13:52:15 |
|
2021-04-22 03:02:25 |
|
2021-01-12 21:23:32 |
|
2021-01-07 17:22:52 |
|