First published: Tue Jun 30 2020(Updated: )
Last updated 24 July 2024
Credit: security@mozilla.org security@mozilla.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mozilla Thunderbird | <78 | 78 |
Mozilla Firefox | <78 | 78 |
Mozilla Firefox | <78.0 | |
openSUSE Leap | =15.1 | |
openSUSE Leap | =15.2 | |
debian/firefox | 133.0.3-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID is CVE-2020-12415.
The severity of CVE-2020-12415 is high.
Mozilla Firefox and Mozilla Thunderbird versions up to exclusive 78 are affected by CVE-2020-12415.
CVE-2020-12415 could cause Thunderbird's AppCache behavior to become confused and allow a manifest to be served from a subdirectory, potentially leading to the appcache being used to service requests for the top level directory.
Mozilla has released a fix for CVE-2020-12415 in Firefox version 78 and Thunderbird version 78. Users are advised to update to the latest available versions to mitigate the vulnerability.