Lucene search

CVE-2020-26961

🗓️ 09 Dec 2020 01:13:15Reported by Alpine Linux Development TeamType

alpinelinux🔗 security.alpinelinux.org👁 26 Views

DNS over HTTPS filters RFC1918 and related IP ranges from responses, but allows IPv4 addresses mapped through IPv6, leading to potential DNS Rebinding attack in Firefox and Thunderbir

Reporter	Title	Published	Views	Family All 158
RedhatCVE	CVE-2020-26961	18 Nov 202001:09	–	redhatcve
UbuntuCve	CVE-2020-26961	17 Nov 202000:00	–	ubuntucve
CNVD	Mozilla Firefox Resource Management Error Vulnerability (CNVD-2021-07320)	24 Nov 202000:00	–	cnvd
Prion	Design/Logic Flaw	9 Dec 202001:15	–	prion
Cvelist	CVE-2020-26961	9 Dec 202000:23	–	cvelist
Veracode	DNS Rebinding Attack	20 Nov 202010:27	–	veracode
NVD	CVE-2020-26961	9 Dec 202001:15	–	nvd
CVE	CVE-2020-26961	9 Dec 202001:15	–	cve
Debian CVE	CVE-2020-26961	9 Dec 202001:15	–	debiancve
Oracle linux	firefox security update	1 Dec 202000:00	–	oraclelinux

OS	OS Version	Architecture	Package	Package Version	Filename
Alpine	edge-community	noarch	firefox-esr	78.5.0-r0	UNKNOWN
Alpine	edge-community	noarch	firefox	83.0-r0	UNKNOWN
Alpine	edge-community	noarch	librewolf	83.0-r0	UNKNOWN
Alpine	edge-community	noarch	thunderbird	78.5.1-r0	UNKNOWN
Alpine	3.12-community	noarch	firefox-esr	78.5.0-r0	UNKNOWN
Alpine	3.12-community	noarch	firefox	83.0-r0	UNKNOWN
Alpine	3.13-community	noarch	firefox-esr	78.5.0-r0	UNKNOWN
Alpine	3.13-community	noarch	firefox	83.0-r0	UNKNOWN
Alpine	3.14-community	noarch	firefox-esr	78.5.0-r0	UNKNOWN
Alpine	3.14-community	noarch	firefox	83.0-r0	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Dec 2020 01:15Current

7.1High risk

Vulners AI Score7.1

CVSS24.3

CVSS36.5

EPSS0.00145