CVE-2020-12425

Summary

Due to confusion processing a hyphen character in Date.parse(), a one-byte out of bounds read could have occurred, leading to potential information disclosure. This vulnerability affects Firefox < 78.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 78affected

Weaknesses

  • Out of bound read in Date.parse()

ADP Enrichment

CVE Program Container

Additional References

References