7 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-6823
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious extension could have called browser.identity.launchWebAuthFlow, controlling the redirecturi, and through the Promise returned, obtain the Auth code...
RHEL 6 : firefox (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Mozilla: Type confusion for special arguments in IonMonkey CVE-2020-15656 - Mozilla: Malicious Extension...
RHEL 8 : firefox (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Mozilla: Type confusion for special arguments in IonMonkey CVE-2020-15656 - Mozilla: Malicious Extension...
Mozilla Firefox Security Advisory (MFSA2020-12) - Linux
This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
CVE-2020-6823
A malicious extension could have called browser.identity.launchWebAuthFlow, controlling the redirecturi, and through the Promise returned, obtain the Auth code and gain access to the user's account at the service provider. This vulnerability affects Firefox 75...
CVE-2020-6823
The CVE-2020-6823 entry concerns Mozilla Firefox (affected versions: below 75). A malicious extension could call browser.identity.launchWebAuthFlow, allowing control of the redirect_uri and through the returned Promise obtain an OAuth authorization code, enabling the attacker to access the user’s...
[ASA-202004-8] firefox: multiple issues
Arch Linux Security Advisory ASA-202004-8 ========================================= Severity: Critical Date : 2020-04-08 CVE-ID : CVE-2020-6821 CVE-2020-6823 CVE-2020-6824 CVE-2020-6825 CVE-2020-6826 Package : firefox Type : multiple issues Remote : Yes Link :...