Lucene search

K
ubuntucveUbuntu.comUB:CVE-2020-15676
HistorySep 25, 2020 - 12:00 a.m.

CVE-2020-15676

2020-09-2500:00:00
ubuntu.com
ubuntu.com
12
cve-2020-15676
firefox
svg
onload handler
vulnerability
executing
javascript
thunderbird
contenteditable element
attacker-controlled data
dom sanitizer
firefox esr
thunderbird
mozjs
spidermonkey
javascript engine
unix

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.007

Percentile

79.7%

Firefox sometimes ran the onload handler for SVG elements that the DOM
sanitizer decided to remove, resulting in JavaScript being executed after
pasting attacker-controlled data into a contenteditable element. This
vulnerability affects Firefox < 81, Thunderbird < 78.3, and Firefox ESR <
78.3.

Notes

Author Note
tyhicks mozjs contains a copy of the SpiderMonkey JavaScript engine
OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchfirefox< 81.0+build2-0ubuntu0.18.04.1UNKNOWN
ubuntu20.04noarchfirefox< 81.0+build2-0ubuntu0.20.04.1UNKNOWN
ubuntu20.10noarchfirefox< 81.0+build2-0ubuntu1UNKNOWN
ubuntu21.04noarchfirefox< 81.0+build2-0ubuntu1UNKNOWN
ubuntu21.10noarchfirefox< 81.0+build2-0ubuntu1UNKNOWN
ubuntu22.04noarchfirefox< 81.0+build2-0ubuntu1UNKNOWN
ubuntu22.10noarchfirefox< 81.0+build2-0ubuntu1UNKNOWN
ubuntu23.04noarchfirefox< 81.0+build2-0ubuntu1UNKNOWN
ubuntu23.10noarchfirefox< 81.0+build2-0ubuntu1UNKNOWN
ubuntu24.04noarchfirefox< 81.0+build2-0ubuntu1UNKNOWN
Rows per page:
1-10 of 131

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.007

Percentile

79.7%