CNVD-2020-21802 — Vulnetix

CNVD-2020-21802 PUBLISHED CVSS 8.100000381469727 HIGH

Mozilla Firefox（火狐）是一个自由的、开放源码的浏览器，适用于Windows、Linux及MacOSX平台。Firefox ESR是指火狐浏览器延长支持版，是mozilla专门为无法或不愿每隔六周就升级一次的企业所打造。 Mozilla Firefox和Firefox ESR存在内存错误引用漏洞。目前没有详细的漏洞细节提供。

Risk Scores

CVSS v3.1

8.100000381469727

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Mozilla	Firefox	*
Mozilla	Firefox ESR	unspecified
Mozilla	Thunderbird	unspecified

Timeline

Apr 3, 2020 CVE Published
Apr 6, 2020 PoC Published
Nov 8, 2021 PoC Published
Nov 20, 2021 PoC Published
Dec 24, 2024 PoC Published
Feb 23, 2025 PoC Published
Feb 2, 2026 PoC Published

References

https://www.mozilla.org/security/advisories/mfsa2020-14/ url
https://www.mozilla.org/security/advisories/mfsa2020-11/ url
https://bugzilla.mozilla.org/show_bug.cgi?id=1626728 url
USN-4335-1 vendor-advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-6820 url

Open in Interactive Console →