Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-6798 (GCVE-0-2020-6798)
Vulnerability from cvelistv5 – Published: 2020-03-02 04:05 – Updated: 2024-08-04 09:11
VLAI?
EPSS
Summary
If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird < 68.5, Firefox < 73, and Firefox < ESR68.5.
Severity ?
No CVSS data available.
CWE
- Incorrect parsing of template tag could result in JavaScript injection
Assigner
References
9 references
| URL | Tags |
|---|---|
| https://www.mozilla.org/security/advisories/mfsa2… | x_refsource_MISC |
| https://www.mozilla.org/security/advisories/mfsa2… | x_refsource_MISC |
| https://www.mozilla.org/security/advisories/mfsa2… | x_refsource_MISC |
| https://bugzilla.mozilla.org/show_bug.cgi?id=1602944 | x_refsource_MISC |
| https://usn.ubuntu.com/4278-2/ | vendor-advisoryx_refsource_UBUNTU |
| https://security.gentoo.org/glsa/202003-02 | vendor-advisoryx_refsource_GENTOO |
| https://security.gentoo.org/glsa/202003-10 | vendor-advisoryx_refsource_GENTOO |
| https://usn.ubuntu.com/4328-1/ | vendor-advisoryx_refsource_UBUNTU |
| https://usn.ubuntu.com/4335-1/ | vendor-advisoryx_refsource_UBUNTU |
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Mozilla | Thunderbird |
Affected:
unspecified , < 68.5
(custom)
|
|
| Mozilla | Firefox |
Affected:
unspecified , < 73
(custom)
Affected: unspecified , < ESR68.5 (custom) |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T09:11:05.089Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-05/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-06/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-07/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944"
},
{
"name": "USN-4278-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4278-2/"
},
{
"name": "GLSA-202003-02",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202003-02"
},
{
"name": "GLSA-202003-10",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202003-10"
},
{
"name": "USN-4328-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4328-1/"
},
{
"name": "USN-4335-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4335-1/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "68.5",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "73",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "ESR68.5",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Incorrect parsing of template tag could result in JavaScript injection",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-04-29T02:07:12.000Z",
"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"shortName": "mozilla"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-05/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-06/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-07/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944"
},
{
"name": "USN-4278-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4278-2/"
},
{
"name": "GLSA-202003-02",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/202003-02"
},
{
"name": "GLSA-202003-10",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/202003-10"
},
{
"name": "USN-4328-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4328-1/"
},
{
"name": "USN-4335-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4335-1/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2020-6798",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Thunderbird",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "68.5"
}
]
}
},
{
"product_name": "Firefox",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "73"
},
{
"version_affected": "\u003c",
"version_value": "ESR68.5"
}
]
}
}
]
},
"vendor_name": "Mozilla"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Incorrect parsing of template tag could result in JavaScript injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.mozilla.org/security/advisories/mfsa2020-05/",
"refsource": "MISC",
"url": "https://www.mozilla.org/security/advisories/mfsa2020-05/"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2020-06/",
"refsource": "MISC",
"url": "https://www.mozilla.org/security/advisories/mfsa2020-06/"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2020-07/",
"refsource": "MISC",
"url": "https://www.mozilla.org/security/advisories/mfsa2020-07/"
},
{
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944",
"refsource": "MISC",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944"
},
{
"name": "USN-4278-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4278-2/"
},
{
"name": "GLSA-202003-02",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202003-02"
},
{
"name": "GLSA-202003-10",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202003-10"
},
{
"name": "USN-4328-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4328-1/"
},
{
"name": "USN-4335-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4335-1/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe",
"assignerShortName": "mozilla",
"cveId": "CVE-2020-6798",
"datePublished": "2020-03-02T04:05:03.000Z",
"dateReserved": "2020-01-10T00:00:00.000Z",
"dateUpdated": "2024-08-04T09:11:05.089Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2020-6798",
"date": "2026-05-20",
"epss": "0.01646",
"percentile": "0.8219"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"73.0\", \"matchCriteriaId\": \"D881BDA7-3601-4A45-991F-4B2B187A73D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"68.5.0\", \"matchCriteriaId\": \"17B5BB4D-FF9F-433C-A3AC-E4F34C3D75D9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"68.5.0\", \"matchCriteriaId\": \"BED2E060-4B8C-403F-B1E9-D45E2511D1CA\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.\"}, {\"lang\": \"es\", \"value\": \"Si se us\\u00f3 una etiqueta template en una etiqueta select, el analizador podr\\u00eda ser confundido y permitir el an\\u00e1lisis y la ejecuci\\u00f3n de JavaScript cuando no deber\\u00eda ser permitido. Un sitio que se bas\\u00f3 en que el navegador se comportara correctamente podr\\u00eda sufrir una vulnerabilidad de tipo cross-site scripting como resultado de ello. En general, este fallo no puede ser explotado por medio del correo electr\\u00f3nico en el producto Thunderbird porque el scripting es deshabilitado cuando se lee el correo, pero es potencialmente un riesgo en el navegador o en contextos similares a los del navegador. Esta vulnerabilidad afecta a Thunderbird versiones anteriores a 68.5, Firefox versiones anteriores a 73, y Firefox versiones anteriores a ESR68.5.\"}]",
"id": "CVE-2020-6798",
"lastModified": "2024-11-21T05:36:12.143",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\", \"baseScore\": 6.1, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 2.7}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:P/A:N\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2020-03-02T05:15:13.400",
"references": "[{\"url\": \"https://bugzilla.mozilla.org/show_bug.cgi?id=1602944\", \"source\": \"security@mozilla.org\", \"tags\": [\"Permissions Required\"]}, {\"url\": \"https://security.gentoo.org/glsa/202003-02\", \"source\": \"security@mozilla.org\"}, {\"url\": \"https://security.gentoo.org/glsa/202003-10\", \"source\": \"security@mozilla.org\"}, {\"url\": \"https://usn.ubuntu.com/4278-2/\", \"source\": \"security@mozilla.org\"}, {\"url\": \"https://usn.ubuntu.com/4328-1/\", \"source\": \"security@mozilla.org\"}, {\"url\": \"https://usn.ubuntu.com/4335-1/\", \"source\": \"security@mozilla.org\"}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2020-05/\", \"source\": \"security@mozilla.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2020-06/\", \"source\": \"security@mozilla.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2020-07/\", \"source\": \"security@mozilla.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://bugzilla.mozilla.org/show_bug.cgi?id=1602944\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Permissions Required\"]}, {\"url\": \"https://security.gentoo.org/glsa/202003-02\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.gentoo.org/glsa/202003-10\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://usn.ubuntu.com/4278-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://usn.ubuntu.com/4328-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://usn.ubuntu.com/4335-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2020-05/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2020-06/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.mozilla.org/security/advisories/mfsa2020-07/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "security@mozilla.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-79\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2020-6798\",\"sourceIdentifier\":\"security@mozilla.org\",\"published\":\"2020-03-02T05:15:13.400\",\"lastModified\":\"2024-11-21T05:36:12.143\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.\"},{\"lang\":\"es\",\"value\":\"Si se us\u00f3 una etiqueta template en una etiqueta select, el analizador podr\u00eda ser confundido y permitir el an\u00e1lisis y la ejecuci\u00f3n de JavaScript cuando no deber\u00eda ser permitido. Un sitio que se bas\u00f3 en que el navegador se comportara correctamente podr\u00eda sufrir una vulnerabilidad de tipo cross-site scripting como resultado de ello. En general, este fallo no puede ser explotado por medio del correo electr\u00f3nico en el producto Thunderbird porque el scripting es deshabilitado cuando se lee el correo, pero es potencialmente un riesgo en el navegador o en contextos similares a los del navegador. Esta vulnerabilidad afecta a Thunderbird versiones anteriores a 68.5, Firefox versiones anteriores a 73, y Firefox versiones anteriores a ESR68.5.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":2.7}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"73.0\",\"matchCriteriaId\":\"D881BDA7-3601-4A45-991F-4B2B187A73D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"68.5.0\",\"matchCriteriaId\":\"17B5BB4D-FF9F-433C-A3AC-E4F34C3D75D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"68.5.0\",\"matchCriteriaId\":\"BED2E060-4B8C-403F-B1E9-D45E2511D1CA\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=1602944\",\"source\":\"security@mozilla.org\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://security.gentoo.org/glsa/202003-02\",\"source\":\"security@mozilla.org\"},{\"url\":\"https://security.gentoo.org/glsa/202003-10\",\"source\":\"security@mozilla.org\"},{\"url\":\"https://usn.ubuntu.com/4278-2/\",\"source\":\"security@mozilla.org\"},{\"url\":\"https://usn.ubuntu.com/4328-1/\",\"source\":\"security@mozilla.org\"},{\"url\":\"https://usn.ubuntu.com/4335-1/\",\"source\":\"security@mozilla.org\"},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2020-05/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2020-06/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2020-07/\",\"source\":\"security@mozilla.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=1602944\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://security.gentoo.org/glsa/202003-02\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202003-10\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/4278-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/4328-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/4335-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2020-05/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2020-06/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.mozilla.org/security/advisories/mfsa2020-07/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
CERTFR-2020-AVI-083
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Mozilla Firefox. Elles permettent à un attaquant de provoquer une exécution de code arbitraire et une injection de code indirecte à distance (XSS).
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Firefox ESR versions ant\u00e9rieures \u00e0 68.5",
"product": {
"name": "Firefox",
"vendor": {
"name": "Mozilla",
"scada": false
}
}
},
{
"description": "Firefox versions ant\u00e9rieures \u00e0 73",
"product": {
"name": "Firefox",
"vendor": {
"name": "Mozilla",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-6797",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6797"
},
{
"name": "CVE-2020-6801",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6801"
},
{
"name": "CVE-2020-6798",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6798"
},
{
"name": "CVE-2020-6800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6800"
},
{
"name": "CVE-2020-6799",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6799"
},
{
"name": "CVE-2020-6796",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6796"
}
],
"links": [],
"reference": "CERTFR-2020-AVI-083",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2020-02-11T00:00:00.000000"
}
],
"risks": [
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Mozilla Firefox.\nElles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code\narbitraire et une injection de code indirecte \u00e0 distance (XSS).\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Mozilla Firefox",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2020-05 du 11 f\u00e9vrier 2020",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2020-05/"
}
]
}
CERTFR-2020-AVI-084
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Mozilla Thunderbird. Elles permettent à un attaquant de provoquer une exécution de code arbitraire et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Mozilla | Thunderbird | Thunderbird versions antérieures à 68.5 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Thunderbird versions ant\u00e9rieures \u00e0 68.5",
"product": {
"name": "Thunderbird",
"vendor": {
"name": "Mozilla",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-6797",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6797"
},
{
"name": "CVE-2020-6798",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6798"
},
{
"name": "CVE-2020-6800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6800"
},
{
"name": "CVE-2020-6795",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6795"
},
{
"name": "CVE-2020-6792",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6792"
},
{
"name": "CVE-2020-6794",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6794"
},
{
"name": "CVE-2020-6793",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6793"
}
],
"links": [],
"reference": "CERTFR-2020-AVI-084",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2020-02-11T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Mozilla\nThunderbird. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution\nde code arbitraire et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Mozilla Thunderbird",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2020-07 du 11 f\u00e9vrier 2020",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2020-07/"
}
]
}
CERTFR-2020-AVI-083
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Mozilla Firefox. Elles permettent à un attaquant de provoquer une exécution de code arbitraire et une injection de code indirecte à distance (XSS).
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Firefox ESR versions ant\u00e9rieures \u00e0 68.5",
"product": {
"name": "Firefox",
"vendor": {
"name": "Mozilla",
"scada": false
}
}
},
{
"description": "Firefox versions ant\u00e9rieures \u00e0 73",
"product": {
"name": "Firefox",
"vendor": {
"name": "Mozilla",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-6797",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6797"
},
{
"name": "CVE-2020-6801",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6801"
},
{
"name": "CVE-2020-6798",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6798"
},
{
"name": "CVE-2020-6800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6800"
},
{
"name": "CVE-2020-6799",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6799"
},
{
"name": "CVE-2020-6796",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6796"
}
],
"links": [],
"reference": "CERTFR-2020-AVI-083",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2020-02-11T00:00:00.000000"
}
],
"risks": [
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Mozilla Firefox.\nElles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code\narbitraire et une injection de code indirecte \u00e0 distance (XSS).\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Mozilla Firefox",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2020-05 du 11 f\u00e9vrier 2020",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2020-05/"
}
]
}
CERTFR-2020-AVI-084
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Mozilla Thunderbird. Elles permettent à un attaquant de provoquer une exécution de code arbitraire et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Mozilla | Thunderbird | Thunderbird versions antérieures à 68.5 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Thunderbird versions ant\u00e9rieures \u00e0 68.5",
"product": {
"name": "Thunderbird",
"vendor": {
"name": "Mozilla",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-6797",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6797"
},
{
"name": "CVE-2020-6798",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6798"
},
{
"name": "CVE-2020-6800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6800"
},
{
"name": "CVE-2020-6795",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6795"
},
{
"name": "CVE-2020-6792",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6792"
},
{
"name": "CVE-2020-6794",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6794"
},
{
"name": "CVE-2020-6793",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6793"
}
],
"links": [],
"reference": "CERTFR-2020-AVI-084",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2020-02-11T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Mozilla\nThunderbird. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution\nde code arbitraire et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Mozilla Thunderbird",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2020-07 du 11 f\u00e9vrier 2020",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2020-07/"
}
]
}
CNVD-2020-07197
Vulnerability from cnvd - Published: 2020-02-14
VLAI Severity ?
Title
Mozilla Firefox跨站脚本漏洞(CNVD-2020-07197)
Description
Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。
Mozilla Firefox存在跨站脚本漏洞。攻击者可利用漏洞导致JavaScript注入。
Severity
中
Patch Name
Mozilla Firefox跨站脚本漏洞(CNVD-2020-07197)的补丁
Patch Description
Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。
Mozilla Firefox存在跨站脚本漏洞。攻击者可利用漏洞导致JavaScript注入。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
用户可参考如下供应商提供的安全公告获得补丁信息: https://www.mozilla.org/en-US/security/advisories/mfsa2020-05/
Reference
https://nvd.nist.gov/vuln/detail/CVE-2020-6798
Impacted products
| Name | Mozilla Firefox |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2020-6798"
}
},
"description": "Mozilla Firefox\u662f\u7f8e\u56fdMozilla\u57fa\u91d1\u4f1a\u7684\u4e00\u6b3e\u5f00\u6e90Web\u6d4f\u89c8\u5668\u3002\n\nMozilla Firefox\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u5bfc\u81f4JavaScript\u6ce8\u5165\u3002",
"formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2020-05/",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2020-07197",
"openTime": "2020-02-14",
"patchDescription": "Mozilla Firefox\u662f\u7f8e\u56fdMozilla\u57fa\u91d1\u4f1a\u7684\u4e00\u6b3e\u5f00\u6e90Web\u6d4f\u89c8\u5668\u3002\r\n\r\nMozilla Firefox\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u5bfc\u81f4JavaScript\u6ce8\u5165\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Mozilla Firefox\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2020-07197\uff09\u7684\u8865\u4e01",
"products": {
"product": "Mozilla Firefox"
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-6798",
"serverity": "\u4e2d",
"submitTime": "2020-02-14",
"title": "Mozilla Firefox\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2020-07197\uff09"
}
FKIE_CVE-2020-6798
Vulnerability from fkie_nvd - Published: 2020-03-02 05:15 - Updated: 2024-11-21 05:36
Severity ?
Summary
If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird < 68.5, Firefox < 73, and Firefox < ESR68.5.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mozilla | firefox | * | |
| mozilla | firefox_esr | * | |
| mozilla | thunderbird | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D881BDA7-3601-4A45-991F-4B2B187A73D0",
"versionEndExcluding": "73.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*",
"matchCriteriaId": "17B5BB4D-FF9F-433C-A3AC-E4F34C3D75D9",
"versionEndExcluding": "68.5.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BED2E060-4B8C-403F-B1E9-D45E2511D1CA",
"versionEndExcluding": "68.5.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5."
},
{
"lang": "es",
"value": "Si se us\u00f3 una etiqueta template en una etiqueta select, el analizador podr\u00eda ser confundido y permitir el an\u00e1lisis y la ejecuci\u00f3n de JavaScript cuando no deber\u00eda ser permitido. Un sitio que se bas\u00f3 en que el navegador se comportara correctamente podr\u00eda sufrir una vulnerabilidad de tipo cross-site scripting como resultado de ello. En general, este fallo no puede ser explotado por medio del correo electr\u00f3nico en el producto Thunderbird porque el scripting es deshabilitado cuando se lee el correo, pero es potencialmente un riesgo en el navegador o en contextos similares a los del navegador. Esta vulnerabilidad afecta a Thunderbird versiones anteriores a 68.5, Firefox versiones anteriores a 73, y Firefox versiones anteriores a ESR68.5."
}
],
"id": "CVE-2020-6798",
"lastModified": "2024-11-21T05:36:12.143",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-03-02T05:15:13.400",
"references": [
{
"source": "security@mozilla.org",
"tags": [
"Permissions Required"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944"
},
{
"source": "security@mozilla.org",
"url": "https://security.gentoo.org/glsa/202003-02"
},
{
"source": "security@mozilla.org",
"url": "https://security.gentoo.org/glsa/202003-10"
},
{
"source": "security@mozilla.org",
"url": "https://usn.ubuntu.com/4278-2/"
},
{
"source": "security@mozilla.org",
"url": "https://usn.ubuntu.com/4328-1/"
},
{
"source": "security@mozilla.org",
"url": "https://usn.ubuntu.com/4335-1/"
},
{
"source": "security@mozilla.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-05/"
},
{
"source": "security@mozilla.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-06/"
},
{
"source": "security@mozilla.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-07/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Permissions Required"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/202003-02"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/202003-10"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://usn.ubuntu.com/4278-2/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://usn.ubuntu.com/4328-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://usn.ubuntu.com/4335-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-05/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-06/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-07/"
}
],
"sourceIdentifier": "security@mozilla.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-QWM2-P76Q-CW3G
Vulnerability from github – Published: 2022-05-24 17:10 – Updated: 2022-05-24 17:10
VLAI?
Details
If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird < 68.5, Firefox < 73, and Firefox < ESR68.5.
{
"affected": [],
"aliases": [
"CVE-2020-6798"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2020-03-02T05:15:00Z",
"severity": "MODERATE"
},
"details": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
"id": "GHSA-qwm2-p76q-cw3g",
"modified": "2022-05-24T17:10:02Z",
"published": "2022-05-24T17:10:02Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-6798"
},
{
"type": "WEB",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202003-02"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202003-10"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/4278-2"
},
{
"type": "WEB",
"url": "https://www.mozilla.org/security/advisories/mfsa2020-05"
},
{
"type": "WEB",
"url": "https://www.mozilla.org/security/advisories/mfsa2020-06"
},
{
"type": "WEB",
"url": "https://www.mozilla.org/security/advisories/mfsa2020-07"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2020-6798
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird < 68.5, Firefox < 73, and Firefox < ESR68.5.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-6798",
"description": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
"id": "GSD-2020-6798",
"references": [
"https://www.suse.com/security/cve/CVE-2020-6798.html",
"https://www.debian.org/security/2020/dsa-4625",
"https://www.debian.org/security/2020/dsa-4620",
"https://access.redhat.com/errata/RHSA-2020:0577",
"https://access.redhat.com/errata/RHSA-2020:0576",
"https://access.redhat.com/errata/RHSA-2020:0574",
"https://access.redhat.com/errata/RHSA-2020:0565",
"https://access.redhat.com/errata/RHSA-2020:0521",
"https://access.redhat.com/errata/RHSA-2020:0520",
"https://access.redhat.com/errata/RHSA-2020:0519",
"https://access.redhat.com/errata/RHSA-2020:0512",
"https://ubuntu.com/security/CVE-2020-6798",
"https://advisories.mageia.org/CVE-2020-6798.html",
"https://security.archlinux.org/CVE-2020-6798",
"https://linux.oracle.com/cve/CVE-2020-6798.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-6798"
],
"details": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
"id": "GSD-2020-6798",
"modified": "2023-12-13T01:21:54.684553Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2020-6798",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Thunderbird",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "68.5"
}
]
}
},
{
"product_name": "Firefox",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "73"
},
{
"version_affected": "\u003c",
"version_value": "ESR68.5"
}
]
}
}
]
},
"vendor_name": "Mozilla"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Incorrect parsing of template tag could result in JavaScript injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.mozilla.org/security/advisories/mfsa2020-05/",
"refsource": "MISC",
"url": "https://www.mozilla.org/security/advisories/mfsa2020-05/"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2020-06/",
"refsource": "MISC",
"url": "https://www.mozilla.org/security/advisories/mfsa2020-06/"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2020-07/",
"refsource": "MISC",
"url": "https://www.mozilla.org/security/advisories/mfsa2020-07/"
},
{
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944",
"refsource": "MISC",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944"
},
{
"name": "USN-4278-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4278-2/"
},
{
"name": "GLSA-202003-02",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202003-02"
},
{
"name": "GLSA-202003-10",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202003-10"
},
{
"name": "USN-4328-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4328-1/"
},
{
"name": "USN-4335-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4335-1/"
}
]
}
},
"mozilla.org": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2020-6798"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Thunderbird",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "68.5"
}
]
}
},
{
"product_name": "Firefox ESR",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "68.5"
}
]
}
},
{
"product_name": "Firefox",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "73"
}
]
}
}
]
},
"vendor_name": "Mozilla"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "If a \u003ccode\u003e\u0026lt;template\u0026gt;\u003c/code\u003e tag was used in a \u003ccode\u003e\u0026lt;select%gt;\u003c/code\u003e tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result.\u003cbr\u003e*In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts.*. This vulnerability affects Thunderbird \u003c 68.5, Firefox ESR \u003c 68.5, and Firefox \u003c 73."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Incorrect parsing of template tag could result in JavaScript injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.mozilla.org/security/advisories/mfsa2020-05/"
},
{
"url": "https://www.mozilla.org/security/advisories/mfsa2020-07/"
},
{
"url": "https://www.mozilla.org/security/advisories/mfsa2020-06/"
},
{
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "73.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "68.5.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "68.5.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@mozilla.org",
"ID": "CVE-2020-6798"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.mozilla.org/security/advisories/mfsa2020-06/",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-06/"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2020-07/",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-07/"
},
{
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944",
"refsource": "MISC",
"tags": [
"Permissions Required"
],
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1602944"
},
{
"name": "https://www.mozilla.org/security/advisories/mfsa2020-05/",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://www.mozilla.org/security/advisories/mfsa2020-05/"
},
{
"name": "USN-4278-2",
"refsource": "UBUNTU",
"tags": [],
"url": "https://usn.ubuntu.com/4278-2/"
},
{
"name": "GLSA-202003-02",
"refsource": "GENTOO",
"tags": [],
"url": "https://security.gentoo.org/glsa/202003-02"
},
{
"name": "GLSA-202003-10",
"refsource": "GENTOO",
"tags": [],
"url": "https://security.gentoo.org/glsa/202003-10"
},
{
"name": "USN-4328-1",
"refsource": "UBUNTU",
"tags": [],
"url": "https://usn.ubuntu.com/4328-1/"
},
{
"name": "USN-4335-1",
"refsource": "UBUNTU",
"tags": [],
"url": "https://usn.ubuntu.com/4335-1/"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
},
"lastModifiedDate": "2020-03-12T00:15Z",
"publishedDate": "2020-03-02T05:15Z"
}
}
}
OPENSUSE-SU-2020:0230-1
Vulnerability from csaf_opensuse - Published: 2020-02-18 05:11 - Updated: 2020-02-18 05:11Summary
Security update for MozillaFirefox
Severity
Important
Notes
Title of the patch: Security update for MozillaFirefox
Description of the patch: This update for MozillaFirefox fixes the following issues:
- Firefox Extended Support Release 68.5.0 ESR
* Fixed: Various stability and security fixes
- Mozilla Firefox ESR68.5
MFSA 2020-06 (bsc#1163368)
* CVE-2020-6796 (bmo#1610426)
Missing bounds check on shared memory read in the parent
process
* CVE-2020-6797 (bmo#1596668)
Extensions granted downloads.open permission could open
arbitrary applications on Mac OSX
* CVE-2020-6798 (bmo#1602944)
Incorrect parsing of template tag could result in JavaScript
injection
* CVE-2020-6799 (bmo#1606596)
Arbitrary code execution when opening pdf links from other
applications, when Firefox is configured as default pdf
reader
* CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543,
bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785)
Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2020-230
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.7 (Medium)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.3 (Medium)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
20 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for MozillaFirefox",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for MozillaFirefox fixes the following issues:\n\n- Firefox Extended Support Release 68.5.0 ESR\n * Fixed: Various stability and security fixes\n- Mozilla Firefox ESR68.5\n MFSA 2020-06 (bsc#1163368)\n * CVE-2020-6796 (bmo#1610426)\n Missing bounds check on shared memory read in the parent\n process\n * CVE-2020-6797 (bmo#1596668)\n Extensions granted downloads.open permission could open\n arbitrary applications on Mac OSX\n * CVE-2020-6798 (bmo#1602944)\n Incorrect parsing of template tag could result in JavaScript\n injection\n * CVE-2020-6799 (bmo#1606596)\n Arbitrary code execution when opening pdf links from other\n applications, when Firefox is configured as default pdf\n reader\n * CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543,\n bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785)\n Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2020-230",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_0230-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2020:0230-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/P7R5CGITOKISJ3KLHI423OQ7CG622ECE/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2020:0230-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/P7R5CGITOKISJ3KLHI423OQ7CG622ECE/"
},
{
"category": "self",
"summary": "SUSE Bug 1163368",
"url": "https://bugzilla.suse.com/1163368"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6796 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6796/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6797 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6798 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6799 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6800 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6800/"
}
],
"title": "Security update for MozillaFirefox",
"tracking": {
"current_release_date": "2020-02-18T05:11:46Z",
"generator": {
"date": "2020-02-18T05:11:46Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2020:0230-1",
"initial_release_date": "2020-02-18T05:11:46Z",
"revision_history": [
{
"date": "2020-02-18T05:11:46Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"product": {
"name": "MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"product_id": "MozillaFirefox-68.5.0-lp151.2.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"product": {
"name": "MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"product_id": "MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"product": {
"name": "MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"product_id": "MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"product": {
"name": "MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"product_id": "MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"product_id": "MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64",
"product": {
"name": "MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64",
"product_id": "MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-68.5.0-lp151.2.30.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64"
},
"product_reference": "MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64"
},
"product_reference": "MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64"
},
"product_reference": "MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64"
},
"product_reference": "MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-6796",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6796"
}
],
"notes": [
{
"category": "general",
"text": "A content process could have modified shared memory relating to crash reporting information, crash itself, and cause an out-of-bound write. This could have caused memory corruption and a potentially exploitable crash. This vulnerability affects Firefox \u003c 73 and Firefox \u003c ESR68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6796",
"url": "https://www.suse.com/security/cve/CVE-2020-6796"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6796",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:11:46Z",
"details": "important"
}
],
"title": "CVE-2020-6796"
},
{
"cve": "CVE-2020-6797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6797"
}
],
"notes": [
{
"category": "general",
"text": "By downloading a file with the .fileloc extension, a semi-privileged extension could launch an arbitrary application on the user\u0027s computer. The attacker is restricted as they are unable to download non-quarantined files or supply command line arguments to the application, limiting the impact. Note: this issue only occurs on Mac OSX. Other operating systems are unaffected. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6797",
"url": "https://www.suse.com/security/cve/CVE-2020-6797"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6797",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:11:46Z",
"details": "important"
}
],
"title": "CVE-2020-6797"
},
{
"cve": "CVE-2020-6798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6798"
}
],
"notes": [
{
"category": "general",
"text": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6798",
"url": "https://www.suse.com/security/cve/CVE-2020-6798"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6798",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:11:46Z",
"details": "important"
}
],
"title": "CVE-2020-6798"
},
{
"cve": "CVE-2020-6799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6799"
}
],
"notes": [
{
"category": "general",
"text": "Command line arguments could have been injected during Firefox invocation as a shell handler for certain unsupported file types. This required Firefox to be configured as the default handler for a given file type and for a file downloaded to be opened in a third party application that insufficiently sanitized URL data. In that situation, clicking a link in the third party application could have been used to retrieve and execute files whose location was supplied through command line arguments. Note: This issue only affects Windows operating systems and when Firefox is configured as the default handler for non-default filetypes. Other operating systems are unaffected. This vulnerability affects Firefox \u003c 73 and Firefox \u003c ESR68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6799",
"url": "https://www.suse.com/security/cve/CVE-2020-6799"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6799",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:11:46Z",
"details": "important"
}
],
"title": "CVE-2020-6799"
},
{
"cve": "CVE-2020-6800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6800"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers and community members reported memory safety bugs present in Firefox 72 and Firefox ESR 68.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. In general, these flaws cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6800",
"url": "https://www.suse.com/security/cve/CVE-2020-6800"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6800",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaFirefox-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-branding-upstream-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-buildsymbols-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-devel-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-common-68.5.0-lp151.2.30.1.x86_64",
"openSUSE Leap 15.1:MozillaFirefox-translations-other-68.5.0-lp151.2.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:11:46Z",
"details": "important"
}
],
"title": "CVE-2020-6800"
}
]
}
OPENSUSE-SU-2020:0231-1
Vulnerability from csaf_opensuse - Published: 2020-02-18 05:12 - Updated: 2020-02-18 05:12Summary
Security update for MozillaThunderbird
Severity
Important
Notes
Title of the patch: Security update for MozillaThunderbird
Description of the patch: This update for MozillaThunderbird fixes the following issues:
- Mozilla Thunderbird 68.5 (bsc#1162777)
MFSA 2020-07 (bsc#1163368)
* CVE-2020-6793 (bmo#1608539)
Out-of-bounds read when processing certain email messages
* CVE-2020-6794 (bmo#1606619)
Setting a master password post-Thunderbird 52 does not delete
unencrypted previously stored passwords
* CVE-2020-6795 (bmo#1611105)
Crash processing S/MIME messages with multiple signatures
* CVE-2020-6797 (bmo#1596668)
Extensions granted downloads.open permission could open
arbitrary applications on Mac OSX
* CVE-2020-6798 (bmo#1602944)
Incorrect parsing of template tag could result in JavaScript
injection
* CVE-2020-6792 (bmo#1609607)
Message ID calculcation was based on uninitialized data
* CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543,
bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785)
Memory safety bugs fixed in Thunderbird 68.5
* new: Support for Client Identity IMAP/SMTP Service Extension
(bmo#1532388)
* new: Support for OAuth 2.0 authentication for POP3 accounts
(bmo#1538409)
* fixed: Status area goes blank during account setup
(bmo#1593122)
* fixed: Calendar: Could not remove color for default
categories (bmo#1584853)
* fixed: Calendar: Prevent calendar component loading multiple
times (bmo#1606375)
* fixed: Calendar: Today pane did not retain width between
sessions (bmo#1610207)
* unresolved: When upgrading from Thunderbird version 60 to
version 68, add-ons are not automatically updated during the
upgrade process. They will however be updated during the add-
on update check. It is of course possible to reinstall
compatible add-ons via the Add-ons Manager or via
addons.thunderbird.net. (bmo#1574183)
* changed: Calendar: Task and Event tree colours adjusted for
the dark theme (bmo#1608344)
* fixed: Retrieval of S/MIME certificates from LDAP failed
(bmo#1604773)
* fixed: Address-parsing crash on some IMAP servers when
preference mail.imap.use_envelope_cmd was set (bmo#1609690)
* fixed: Incorrect forwarding of HTML messages caused SMTP
servers to respond with a timeout (bmo#1222046)
* fixed: Calendar: Various parts of the calendar UI stopped
working when a second Thunderbird window opened (bmo#1608407)
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2020-231
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.7 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.3 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
27 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for MozillaThunderbird",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for MozillaThunderbird fixes the following issues:\n\n- Mozilla Thunderbird 68.5 (bsc#1162777)\n MFSA 2020-07 (bsc#1163368)\n * CVE-2020-6793 (bmo#1608539)\n Out-of-bounds read when processing certain email messages\n * CVE-2020-6794 (bmo#1606619)\n Setting a master password post-Thunderbird 52 does not delete\n unencrypted previously stored passwords\n * CVE-2020-6795 (bmo#1611105)\n Crash processing S/MIME messages with multiple signatures\n * CVE-2020-6797 (bmo#1596668)\n Extensions granted downloads.open permission could open\n arbitrary applications on Mac OSX\n * CVE-2020-6798 (bmo#1602944)\n Incorrect parsing of template tag could result in JavaScript\n injection\n * CVE-2020-6792 (bmo#1609607)\n Message ID calculcation was based on uninitialized data\n * CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543,\n bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785)\n Memory safety bugs fixed in Thunderbird 68.5\n\n * new: Support for Client Identity IMAP/SMTP Service Extension\n (bmo#1532388)\n * new: Support for OAuth 2.0 authentication for POP3 accounts\n (bmo#1538409)\n * fixed: Status area goes blank during account setup\n (bmo#1593122)\n * fixed: Calendar: Could not remove color for default\n categories (bmo#1584853)\n * fixed: Calendar: Prevent calendar component loading multiple\n times (bmo#1606375)\n * fixed: Calendar: Today pane did not retain width between\n sessions (bmo#1610207)\n * unresolved: When upgrading from Thunderbird version 60 to\n version 68, add-ons are not automatically updated during the\n upgrade process. They will however be updated during the add-\n on update check. It is of course possible to reinstall\n compatible add-ons via the Add-ons Manager or via\n addons.thunderbird.net. (bmo#1574183)\n * changed: Calendar: Task and Event tree colours adjusted for\n the dark theme (bmo#1608344)\n * fixed: Retrieval of S/MIME certificates from LDAP failed\n (bmo#1604773)\n * fixed: Address-parsing crash on some IMAP servers when\n preference mail.imap.use_envelope_cmd was set (bmo#1609690)\n * fixed: Incorrect forwarding of HTML messages caused SMTP\n servers to respond with a timeout (bmo#1222046)\n * fixed: Calendar: Various parts of the calendar UI stopped\n working when a second Thunderbird window opened (bmo#1608407)\n\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2020-231",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_0231-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2020:0231-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/N7YWPZQVCFPWDEOU6J3TATNMIGNZ4N6P/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2020:0231-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/N7YWPZQVCFPWDEOU6J3TATNMIGNZ4N6P/"
},
{
"category": "self",
"summary": "SUSE Bug 1162777",
"url": "https://bugzilla.suse.com/1162777"
},
{
"category": "self",
"summary": "SUSE Bug 1163368",
"url": "https://bugzilla.suse.com/1163368"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6792 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6793 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6794 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6795 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6797 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6798 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-6800 page",
"url": "https://www.suse.com/security/cve/CVE-2020-6800/"
}
],
"title": "Security update for MozillaThunderbird",
"tracking": {
"current_release_date": "2020-02-18T05:12:00Z",
"generator": {
"date": "2020-02-18T05:12:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2020:0231-1",
"initial_release_date": "2020-02-18T05:12:00Z",
"revision_history": [
{
"date": "2020-02-18T05:12:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"product": {
"name": "MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"product_id": "MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"product": {
"name": "MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"product_id": "MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64",
"product": {
"name": "MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64",
"product_id": "MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64"
},
"product_reference": "MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
},
"product_reference": "MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-6792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6792"
}
],
"notes": [
{
"category": "general",
"text": "When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects Thunderbird \u003c 68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6792",
"url": "https://www.suse.com/security/cve/CVE-2020-6792"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6792",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:12:00Z",
"details": "important"
}
],
"title": "CVE-2020-6792"
},
{
"cve": "CVE-2020-6793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6793"
}
],
"notes": [
{
"category": "general",
"text": "When processing an email message with an ill-formed envelope, Thunderbird could read data from a random memory location. This vulnerability affects Thunderbird \u003c 68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6793",
"url": "https://www.suse.com/security/cve/CVE-2020-6793"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6793",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:12:00Z",
"details": "important"
}
],
"title": "CVE-2020-6793"
},
{
"cve": "CVE-2020-6794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6794"
}
],
"notes": [
{
"category": "general",
"text": "If a user saved passwords before Thunderbird 60 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not deleted when the data was copied to a new format starting in Thunderbird 60. The new master password is added only on the new file. This could allow the exposure of stored password data outside of user expectations. This vulnerability affects Thunderbird \u003c 68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6794",
"url": "https://www.suse.com/security/cve/CVE-2020-6794"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6794",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:12:00Z",
"details": "important"
}
],
"title": "CVE-2020-6794"
},
{
"cve": "CVE-2020-6795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6795"
}
],
"notes": [
{
"category": "general",
"text": "When processing a message that contains multiple S/MIME signatures, a bug in the MIME processing code caused a null pointer dereference, leading to an unexploitable crash. This vulnerability affects Thunderbird \u003c 68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6795",
"url": "https://www.suse.com/security/cve/CVE-2020-6795"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6795",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:12:00Z",
"details": "important"
}
],
"title": "CVE-2020-6795"
},
{
"cve": "CVE-2020-6797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6797"
}
],
"notes": [
{
"category": "general",
"text": "By downloading a file with the .fileloc extension, a semi-privileged extension could launch an arbitrary application on the user\u0027s computer. The attacker is restricted as they are unable to download non-quarantined files or supply command line arguments to the application, limiting the impact. Note: this issue only occurs on Mac OSX. Other operating systems are unaffected. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6797",
"url": "https://www.suse.com/security/cve/CVE-2020-6797"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6797",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:12:00Z",
"details": "important"
}
],
"title": "CVE-2020-6797"
},
{
"cve": "CVE-2020-6798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6798"
}
],
"notes": [
{
"category": "general",
"text": "If a template tag was used in a select tag, the parser could be confused and allow JavaScript parsing and execution when it should not be allowed. A site that relied on the browser behaving correctly could suffer a cross-site scripting vulnerability as a result. In general, this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but is potentially a risk in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6798",
"url": "https://www.suse.com/security/cve/CVE-2020-6798"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6798",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:12:00Z",
"details": "important"
}
],
"title": "CVE-2020-6798"
},
{
"cve": "CVE-2020-6800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-6800"
}
],
"notes": [
{
"category": "general",
"text": "Mozilla developers and community members reported memory safety bugs present in Firefox 72 and Firefox ESR 68.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. In general, these flaws cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-6800",
"url": "https://www.suse.com/security/cve/CVE-2020-6800"
},
{
"category": "external",
"summary": "SUSE Bug 1163368 for CVE-2020-6800",
"url": "https://bugzilla.suse.com/1163368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:MozillaThunderbird-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-common-68.5.0-lp151.2.25.1.x86_64",
"openSUSE Leap 15.1:MozillaThunderbird-translations-other-68.5.0-lp151.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-18T05:12:00Z",
"details": "important"
}
],
"title": "CVE-2020-6800"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…