CVE-2020-12407

CVSS v3.1 6.5 (Medium)

CVSS v2.0 2.6 (Low)

EPSS 0.17 % (54^th)

Affected Products 1

Advisories 5

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox < 77.

Weaknesses

CWE-125: Out-of-bounds Read

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2020-07-09 15:15:11
(4 years ago)
Updated Date: 2021-07-21 11:39:23
(3 years ago)

Affected Products

Mozilla

Firefox

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 77.0 version	cpe:2.3:a:mozilla:firefox		< 77.0