Lucene search
Ubuntu.comUB:CVE-2020-12415HistoryJul 01, 2020 - 12:00 a.m.
CVE-2020-12415
2020-07-0100:00:00
ubuntu.com
ubuntu.com
8
0.001 Low
EPSS
Percentile
50.0%
When “%2F” was present in a manifest URL, Firefox’s AppCache behavior may
have become confused and allowed a manifest to be served from a
subdirectory. This could cause the appcache to be used to service requests
for the top level directory. This vulnerability affects Firefox < 78.
Notes
| Author | Note |
|---|---|
| tyhicks | mozjs contains a copy of the SpiderMonkey JavaScript engine |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | firefox | < 78.0.1+build1-0ubuntu0.18.04.1 | UNKNOWN |
| ubuntu | 19.10 | noarch | firefox | < 78.0.1+build1-0ubuntu0.19.10.1 | UNKNOWN |
| ubuntu | 20.04 | noarch | firefox | < 78.0.1+build1-0ubuntu0.20.04.1 | UNKNOWN |
| ubuntu | 20.10 | noarch | firefox | < 78.0.1+build1-0ubuntu1 | UNKNOWN |
| ubuntu | 21.04 | noarch | firefox | < 78.0.1+build1-0ubuntu1 | UNKNOWN |
| ubuntu | 21.10 | noarch | firefox | < 78.0.1+build1-0ubuntu1 | UNKNOWN |
| ubuntu | 22.04 | noarch | firefox | < 78.0.1+build1-0ubuntu1 | UNKNOWN |
| ubuntu | 22.10 | noarch | firefox | < 78.0.1+build1-0ubuntu1 | UNKNOWN |
| ubuntu | 23.04 | noarch | firefox | < 78.0.1+build1-0ubuntu1 | UNKNOWN |
| ubuntu | 23.10 | noarch | firefox | < 78.0.1+build1-0ubuntu1 | UNKNOWN |
References
launchpad.net/bugs/cve/CVE-2020-12415
nvd.nist.gov/vuln/detail/CVE-2020-12415
security-tracker.debian.org/tracker/CVE-2020-12415
ubuntu.com/security/notices/USN-4408-1
www.cve.org/CVERecord?id=CVE-2020-12415
www.mozilla.org/en-US/security/advisories/mfsa2020-24/#CVE-2020-12415
www.mozilla.org/en-US/security/advisories/mfsa2020-29/#CVE-2020-12415
Related
cvelist
cvelist
CVE-2020-12415
2020-07-09 14:39:37
cve
cve
CVE-2020-12415
2020-07-09 15:15:00
redhatcve
redhatcve
CVE-2020-12415
2020-09-03 06:19:58
veracode
veracode
Authorization Bypass
2020-08-06 21:32:18
alpinelinux
alpinelinux
CVE-2020-12415
2020-07-09 15:15:00
prion
prion
Directory traversal
2020-07-09 15:15:00
debiancve
debiancve
CVE-2020-12415
2020-07-09 15:15:00
kaspersky
kaspersky
KLA11913 Multiple vulnerabilities in Mozilla Thunderbird
2020-07-16 00:00:00
KLA11824 Multiple vulnerabilities in Mozilla Firefox
2020-06-30 00:00:00
mageia
mageia
Updated Thunderbird packages fix security vulnerabilities
2020-09-30 13:01:40
ubuntu
ubuntu
Firefox vulnerabilities
2020-07-02 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4408-1)
2020-07-03 00:00:00
Mageia: Security Advisory (MGASA-2020-0378)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:1899-1)
2021-04-19 00:00:00
nessus
nessus
GLSA-202007-10 : Mozilla Firefox: Multiple vulnerabilities
2020-07-27 00:00:00
SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:1898-1)
2020-07-15 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2020-07-26 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 78 — Mozilla
2020-06-30 00:00:00
Security Vulnerabilities fixed in Thunderbird 78 — Mozilla
2020-07-16 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2020-07-17 00:00:00
Security update for MozillaFirefox (important)
2020-07-20 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 78.0.1-alt1
2020-07-04 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 78.0-alt1
2020-07-21 00:00:00