First published: Fri Mar 06 2020(Updated: )
Last updated 24 July 2024
Credit: natashenka Google Project Zeronatashenka Google Project Zeronatashenka Google Project Zeronatashenka Google Project Zero cve@mitre.org cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Apple Safari | <13.1.1 | 13.1.1 |
Apple watchOS | <6.2.5 | 6.2.5 |
Apple tvOS | <13.4.5 | 13.4.5 |
Apple iOS | <13.5 | 13.5 |
Apple iPadOS | <13.5 | 13.5 |
Mozilla Firefox ESR | <68.6 | 68.6 |
Mozilla Thunderbird | <68.6 | 68.6 |
redhat/firefox | <68.6 | 68.6 |
redhat/thunderbird | <68.6 | 68.6 |
redhat/chromium-browser | <80.0.3987.149 | 80.0.3987.149 |
Mozilla Firefox | <74 | 74 |
Usrsctp Project Usrsctp | <2019-12-20 | |
Usrsctp Project Usrsctp | <0.9.4.0 | |
Debian Debian Linux | =8.0 | |
Debian Debian Linux | =9.0 | |
Debian Debian Linux | =10.0 | |
Canonical Ubuntu Linux | =16.04 | |
Canonical Ubuntu Linux | =18.04 | |
Canonical Ubuntu Linux | =19.10 | |
debian/chromium | 120.0.6099.224-1~deb11u1 130.0.6723.91-1~deb12u1 131.0.6778.204-1~deb12u1 131.0.6778.139-1 131.0.6778.204-1 | |
debian/firefox | 133.0.3-1 | |
debian/firefox-esr | 115.14.0esr-1~deb11u1 128.5.0esr-1~deb11u1 128.3.1esr-1~deb12u1 128.5.0esr-1~deb12u1 128.5.0esr-1 128.5.1esr-1 | |
debian/libusrsctp | 0.9.3.0+20201102-2 0.9.5.0-2 | |
debian/thunderbird | 1:115.12.0-1~deb11u1 1:128.5.0esr-1~deb11u1 1:115.16.0esr-1~deb12u1 1:128.5.0esr-1~deb12u1 1:128.5.2esr-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)
(Found alongside the following vulnerabilities)
CVE-2019-20503 is a vulnerability in WebRTC that allows for out of bounds reads when parameters are partially outside a chunk.
CVE-2019-20503 affects Mozilla Firefox version up to 74 and Firefox ESR version up to 68.6, potentially allowing for out of bounds reads.
CVE-2019-20503 impacts Apple Safari, iOS, iPadOS, watchOS, and tvOS versions up to 13.1.1, 13.5, 13.5, 6.2.5, and 13.4.5 respectively, potentially allowing for out of bounds reads.
CVE-2019-20503 is classified as a medium severity vulnerability with a severity score of 4 out of 10.
To fix CVE-2019-20503, update to the latest version of the affected software, such as Mozilla Firefox 74 or Apple Safari 13.1.1.