Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-6823

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious extension could have called browser.identity.launchWebAuthFlow, controlling the redirecturi, and through the Promise returned, obtain the Auth code...

9.8CVSS8.3AI score0.01612EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.51 views

RHEL 6 : firefox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Mozilla: Type confusion for special arguments in IonMonkey CVE-2020-15656 - Mozilla: Malicious Extension...

9.8CVSS9.6AI score0.32568EPSS
Exploits12References64
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.24 views

RHEL 8 : firefox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Mozilla: Type confusion for special arguments in IonMonkey CVE-2020-15656 - Mozilla: Malicious Extension...

9.8CVSS8.3AI score0.32568EPSS
Exploits9References54
OpenVAS
OpenVAS
added 2021/11/08 12:0 a.m.23 views

Mozilla Firefox Security Advisory (MFSA2020-12) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

9.8CVSS7AI score0.01905EPSS
Exploits0References8
Cvelist
Cvelist
added 2020/04/24 3:53 p.m.55 views

CVE-2020-6823

A malicious extension could have called browser.identity.launchWebAuthFlow, controlling the redirecturi, and through the Promise returned, obtain the Auth code and gain access to the user's account at the service provider. This vulnerability affects Firefox 75...

8.9AI score0.01612EPSS
Exploits0References2
CVE
CVE
added 2020/04/24 3:53 p.m.223 views

CVE-2020-6823

The CVE-2020-6823 entry concerns Mozilla Firefox (affected versions: below 75). A malicious extension could call browser.identity.launchWebAuthFlow, allowing control of the redirect_uri and through the returned Promise obtain an OAuth authorization code, enabling the attacker to access the user’s...

9.8CVSS8.8AI score0.01612EPSS
Exploits0References2Affected Software1
ArchLinux
ArchLinux
added 2020/04/08 12:0 a.m.45 views

[ASA-202004-8] firefox: multiple issues

Arch Linux Security Advisory ASA-202004-8 ========================================= Severity: Critical Date : 2020-04-08 CVE-ID : CVE-2020-6821 CVE-2020-6823 CVE-2020-6824 CVE-2020-6825 CVE-2020-6826 Package : firefox Type : multiple issues Remote : Yes Link :...

9.8CVSS0.1AI score0.01905EPSS
Exploits0References17
Rows per page
Query Builder