CVE-2020-26978

Summary

Using techniques that built on the slipstream research, a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine. This vulnerability affects Firefox < 84, Thunderbird < 78.6, and Firefox ESR < 78.6.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 84affected
MozillaThunderbirdunspecified < 78.6affected
MozillaFirefox ESRunspecified < 78.6affected

Weaknesses

  • Internal network hosts could have been probed by a malicious webpage

ADP Enrichment

CVE Program Container

Additional References

References