vulnerability

Oracle Solaris 11: CVE-2020-12417: Vulnerability in Firefox, Thunderbird

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Jul 9, 2020
Added
Jan 19, 2021
Modified
Feb 17, 2022

Description

Due to confusion about ValueTags on JavaScript Objects, an object may pass through the type barrier, resulting in memory corruption and a potentially exploitable crash. *Note: this issue only affects Firefox on ARM64 platforms.* This vulnerability affects Firefox ESR

Solution(s)

oracle-solaris-11-4-upgrade-mail-thunderbird-68-11-0-11-4-25-0-1-75-1oracle-solaris-11-4-upgrade-mail-thunderbird-plugin-thunderbird-lightning-68-11-0-11-4-25-0-1-75-1oracle-solaris-11-4-upgrade-web-browser-firefox-68-11-0-11-4-25-0-1-75-1oracle-solaris-11-4-upgrade-web-data-firefox-bookmarks-68-11-0-11-4-25-0-1-75-1
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.