CVE-2020-15657
CVSS v3.1
7.8 (High)
CVSS v2.0
6.9 (Medium)
EPSS
0.11 % (46th)
Affected Products
4
Advisories
10
Firefox could be made to load attacker-supplied DLL files from the installation directory. This required an attacker that is already capable of placing files in the installation directory. Note: This issue only affected Windows operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.
Weaknesses
- CWE-427
- Uncontrolled Search Path Element
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2020-08-10 18:15:12
(4 years ago) - Updated Date
-
2020-08-14 17:29:47
(4 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
AND |
|
---|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...