CVE-2020-26957

Summary

OneCRL was non-functional in the new Firefox for Android due to a missing service initialization. This could result in a failure to enforce some certificate revocations. Note: This issue only affected Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox < 83.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefox< 83affected

Weaknesses

  • OneCRL was not working in Firefox for Android

ADP Enrichment

CVE Program Container

Additional References

References