The Mozilla Foundation Security Advisory describes this flaw as: When a BigInt was right-shifted the backing store was not properly cleared, allowing uninitialized memory to be read.

References

bugzilla.redhat.com/show_bug.cgi?id=1904515

chromereleases.googleblog.com/2020/12/stable-channel-update-for-desktop.html

nvd.nist.gov/vuln/detail/CVE-2020-16042

www.cve.org/CVERecord?id=CVE-2020-16042

veracode 1

cve 1

ubuntucve 1

prion 1

debiancve 1

alpinelinux 1

nessus 60

threatpost 2

suse 10

fedora 2

kaspersky 4

archlinux 3

freebsd 1

openvas 23

chrome 1

debian 6

oraclelinux 4

redhat 10

osv 6

mageia 2

gentoo 2

centos 1

altlinux 2

mozilla 3

ubuntu 2

amazon 1

photon 1

mscve 1

veracode

Memory Leaks

2020-12-16 08:57:11

cve

CVE-2020-16042

2021-01-08 19:15:00

ubuntucve

CVE-2020-16042

2020-12-15 00:00:00

prion

Design/Logic Flaw

2021-01-08 19:15:00

debiancve

CVE-2020-16042

2021-01-08 19:15:00

alpinelinux

CVE-2020-16042

2021-01-08 19:15:00

nessus

openSUSE Security Update : chromium (openSUSE-2020-2181)

2020-12-08 00:00:00

Fedora 33 : chromium (2020-f43efd09e8)

2020-12-10 00:00:00

openSUSE Security Update : opera (openSUSE-2020-2360)

2021-01-25 00:00:00

threatpost

Firefox Patches Critical Mystery Bug, Also Impacting Google Chrome

2020-12-15 21:04:30

High-Severity Chrome Bugs Allow Browser Hacks

2020-12-04 20:40:45

suse

Security update for chromium (important)

2020-12-09 00:00:00

Security update for chromium (important)

2020-12-09 00:00:00

Security update for opera (important)

2020-12-29 00:00:00

fedora

[SECURITY] Fedora 33 Update: chromium-87.0.4280.88-1.fc33

2020-12-10 01:16:46

[SECURITY] Fedora 32 Update: chromium-87.0.4280.88-1.fc32

2020-12-21 01:36:08

kaspersky

KLA12018 Multiple vulnerabilities in Google Chrome

2020-12-02 00:00:00

KLA12030 Multiple vulnerabilities in Mozilla Firefox ESR

2020-12-15 00:00:00

KLA12031 Multiple vulnerabilities in Mozilla Thunderbird

2020-12-15 00:00:00

archlinux

[ASA-202012-14] chromium: multiple issues

2020-12-09 00:00:00

[ASA-202012-23] thunderbird: multiple issues

2020-12-16 00:00:00

[ASA-202012-25] firefox: multiple issues

2020-12-16 00:00:00

freebsd

chromium -- multiple vulnerabilities

2020-12-02 00:00:00

openvas

Fedora: Security Advisory for chromium (FEDORA-2020-5b9c42f1b9)

2020-12-21 00:00:00

Fedora: Security Advisory for chromium (FEDORA-2020-f43efd09e8)

2020-12-10 00:00:00

Mageia: Security Advisory (MGASA-2020-0461)

2022-01-28 00:00:00

chrome

Stable Channel Update for Desktop

2020-12-02 00:00:00

debian

[SECURITY] [DSA 4815-1] thunderbird security update

2020-12-17 09:30:44

[SECURITY] [DSA 4813-1] firefox-esr security update

2020-12-16 12:46:35

[SECURITY] [DLA 2497-1] thunderbird security update

2020-12-17 11:38:46

oraclelinux

firefox security update

2020-12-17 00:00:00

thunderbird security update

2020-12-18 00:00:00

thunderbird security update

2020-12-18 00:00:00

redhat

(RHSA-2020:5562) Important: firefox security update

2020-12-16 07:29:53

(RHSA-2020:5624) Important: thunderbird security update

2020-12-17 16:03:29

(RHSA-2020:5565) Important: firefox security update

2020-12-16 08:01:21

osv

firefox-esr - security update

2020-12-16 00:00:00

thunderbird - security update

2020-12-17 00:00:00

thunderbird - security update

2020-12-17 00:00:00

mageia

Updated firefox packages fix security vulnerabilities

2020-12-17 16:10:41

Updated thunderbird packages fix security vulnerabilities

2020-12-17 16:10:41

gentoo

Mozilla Firefox, Mozilla Thunderbird: Multiple vulnerabilities

2020-12-23 00:00:00

Chromium, Google Chrome: Multiple vulnerabilities

2020-12-07 00:00:00

centos

thunderbird security update

2020-12-21 20:46:06

altlinux

Security fix for the ALT Linux 10 package firefox-esr version 78.6.0-alt1

2020-12-14 00:00:00

Security fix for the ALT Linux 10 package thunderbird version 78.6.0-alt1

2020-12-15 00:00:00

mozilla

Security Vulnerabilities fixed in Thunderbird 78.6 — Mozilla

2020-12-15 00:00:00

Security Vulnerabilities fixed in Firefox ESR 78.6 — Mozilla

2020-12-15 00:00:00

Security Vulnerabilities fixed in Firefox 84 — Mozilla

2020-12-15 00:00:00

ubuntu

Thunderbird vulnerabilities

2021-01-20 00:00:00

Firefox vulnerabilities

2020-12-15 00:00:00

amazon

Important: thunderbird

2021-01-05 23:35:00

photon

Critical Photon OS Security Update - PHSA-2023-3.0-0602

2023-06-21 00:00:00

mscve

Chromium Security Updates for Microsoft Edge (Chromium-Based)

2020-01-28 08:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

43.6%

JSON

Related for RH:CVE-2020-16042