CVE-2020-12388

Summary

The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox ESR < 68.8 and Firefox < 76.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefox ESRunspecified < 68.8affected
MozillaFirefoxunspecified < 76affected

Weaknesses

  • Sandbox escape with improperly guarded Access Tokens

ADP Enrichment

CVE Program Container

Additional References

References