CVE-2020-12409

CVSS v3.1 8.8 (High)

CVSS v2.0 6.8 (Medium)

EPSS 0.18 % (56^th)

Affected Products 1

Advisories 5

When using certain blank characters in a URL, they where incorrectly rendered as spaces instead of an encoded URL. This vulnerability affects Firefox < 77.

Weaknesses

CWE-NVD-Other

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2020-07-09 15:15:11
(4 years ago)
Updated Date: 2020-07-13 01:47:54
(4 years ago)

Affected Products

Mozilla

Firefox

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox prior 77.0 version	cpe:2.3:a:mozilla:firefox		< 77.0