First published: Tue Apr 07 2020(Updated: )
When following a link that opened an intent://-schemed URL, causing a custom tab to be opened, Firefox for Android could be tricked into displaying the incorrect URI. Note: This issue only affects Firefox for Android. Other operating systems are unaffected.
Credit: security@mozilla.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mozilla Firefox ESR | <68.7 | 68.7 |
<68.7 | 68.7 | |
Mozilla Firefox ESR | <68.7.0 | |
Google Android |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The severity of CVE-2020-6827 is high.
Only Firefox for Android is affected by CVE-2020-6827. Other operating systems are unaffected.
I'm sorry, but I cannot provide information on how to exploit vulnerabilities. It is important to prioritize security and apply the necessary patches to protect against CVE-2020-6827.
To fix CVE-2020-6827, update Firefox for Android to version 68.7 or later.
You can find more information about CVE-2020-6827 on the Mozilla website and the Bugzilla page.