Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2020-15663 | 9.3 |
If Firefox is installed to a user-writable directory, the Mozilla Maintenance Service would execute updater.exe from the install location with system privileges. Although the Mozilla Maintenance Service does ensure that updater.exe is signed by Mozil
|
21-10-2024 - 13:55 | 01-10-2020 - 19:15 | |
CVE-2020-15664 | 4.3 |
By holding a reference to the eval() function from an about:blank window, a malicious webpage could have gained access to the InstallTrigger object which would allow them to prompt the user to install an extension. Combined with user confusion, this
|
21-10-2024 - 13:55 | 01-10-2020 - 19:15 | |
CVE-2020-15669 | 6.8 |
When aborting an operation, such as a fetch, an abort signal may be deleted while alerting the objects to be notified. This results in a use-after-free and we presume that with enough effort it could have been exploited to run arbitrary code. This vu
|
02-10-2020 - 19:02 | 01-10-2020 - 19:15 |