First published: Tue May 05 2020(Updated: )
The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape.Note: this issue only affects Firefox on Windows operating systems.
Credit: security@mozilla.org
Affected Software | Affected Version | How to fix |
---|---|---|
Firefox | <76 | 76 |
Firefox ESR | <68.8 | 68.8 |
Firefox | <76.0 | |
Firefox ESR | <68.8.0 | |
Microsoft Windows Operating System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2020-12388 is rated as a high severity vulnerability due to its potential for sandbox escape.
To fix CVE-2020-12388, update your Firefox or Firefox ESR to versions 76 or 68.8 respectively.
CVE-2020-12388 affects users of Firefox and Firefox ESR running on Windows operating systems.
CVE-2020-12388 is a sandbox escape vulnerability that allows for insufficient access control.
CVE-2020-12388 was disclosed by Mozilla as part of their security advisory in 2020.