Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community

Type apk

Namespace alpine

Name firefox-esr

Version 78.5.0-r0

Qualifiers

arch	x86_64
distroversion	v3.19
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version 78.6.0-r0

Latest_non_vulnerable_version 115.17.0-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-45d6-1r5e-s7aj

vulnerability_id VCID-45d6-1r5e-s7aj

summary When drawing a transparent image on top of an unknown cross-origin image, the Skia library drawImage function took a variable amount of time depending on the content of the underlying image. This resulted in potential cross-origin information exposure of image content through timing side-channel attacks.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16012.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16012.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16012

reference_id

reference_type

scores

value	0.04946
scoring_system	epss
scoring_elements	0.89842
published_at	2026-06-05T12:55:00Z

value	0.04946
scoring_system	epss
scoring_elements	0.89826
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16012

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15959
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15959

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15960
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15960

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15962
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15962

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15963
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15963

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15964
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15964

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15965
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15965

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15966
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15966

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15967
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15967

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15968
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15968

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15969
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15969

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15970
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15970

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15971
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15971

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15972
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15972

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15973
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15973

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15974
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15974

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15975
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15975

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15976
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15976

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15977
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15977

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15978
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15978

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15979
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15979

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15980
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15980

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15981
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15981

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15982
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15982

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15983
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15983

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15984
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15984

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15985
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15985

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15986
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15986

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15987
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15987

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15988
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15988

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15990
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15990

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15991
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15991

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15992
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15992

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16000
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16000

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16001
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16001

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16002
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16002

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16003
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16003

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16004
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16004

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16006
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16006

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16008
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16008

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16009
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16009

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16011
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16011

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16013
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16013

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16014
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16014

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16015
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16015

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16016
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16016

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16017
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16017

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16018
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16018

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16019
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16019

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16020
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16020

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16021
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16021

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16022
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16022

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16023
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16023

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16024
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16024

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16025
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16025

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16026
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16026

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16027
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16027

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16028
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16028

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16029
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16029

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16030
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16030

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16031
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16031

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16040

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16041
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16041

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16042
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16042

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36765
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36765

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6510
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6510

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6512
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6512

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6514
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6514

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6515
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6515

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6516

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6517
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6517

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6518
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6518

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6519
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6519

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6520
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6520

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6521
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6521

100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6522
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6522

101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6523
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6523

102

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6524
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6524

103

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6525
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6525

104

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6526
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6526

105

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6527
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6527

106

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6528
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6528

107

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6529
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6529

108

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6530
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6530

109

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6531
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6531

110

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6532
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6532

111

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6533

112

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6534
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6534

113

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6535

114

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6536

115

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6537
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6537

116

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6538

117

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6539

118

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6540

119

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6541

120

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6542

121

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6543

122

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6544
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6544

123

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6545
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6545

124

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6547

125

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6548

126

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6549
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6549

127

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6550

128

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6551
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6551

129

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6552
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6552

130

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6553
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6553

131

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6554
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6554

132

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6555
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6555

133

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6556
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6556

134

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6557
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6557

135

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6559
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6559

136

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6560
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6560

137

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6561
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6561

138

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6562
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6562

139

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6563
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6563

140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6564
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6564

141

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6565

142

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6566
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6566

143

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6567
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6567

144

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6568
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6568

145

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6569
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6569

146

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6570
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6570

147

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6571
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6571

148

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6573
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6573

149

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6575
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6575

150

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6576
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6576

151

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

152

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1898732
reference_id	1898732
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1898732

153

reference_url	https://security.archlinux.org/ASA-202011-11
reference_id	ASA-202011-11
reference_type
scores
url	https://security.archlinux.org/ASA-202011-11

154

reference_url	https://security.archlinux.org/ASA-202011-12
reference_id	ASA-202011-12
reference_type
scores
url	https://security.archlinux.org/ASA-202011-12

155

reference_url

https://security.archlinux.org/AVG-1277

reference_id

AVG-1277

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1277

156

reference_url

https://security.archlinux.org/AVG-1279

reference_id

AVG-1279

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1279

157

reference_url	https://security.gentoo.org/glsa/202012-03
reference_id	GLSA-202012-03
reference_type
scores
url	https://security.gentoo.org/glsa/202012-03

158

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_id

mfsa2020-50

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

159

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_id

mfsa2020-51

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

160

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_id

mfsa2020-52

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

161

reference_url	https://access.redhat.com/errata/RHSA-2020:5231
reference_id	RHSA-2020:5231
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5231

162

reference_url	https://access.redhat.com/errata/RHSA-2020:5232
reference_id	RHSA-2020:5232
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5232

163

reference_url	https://access.redhat.com/errata/RHSA-2020:5233
reference_id	RHSA-2020:5233
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5233

164

reference_url	https://access.redhat.com/errata/RHSA-2020:5234
reference_id	RHSA-2020:5234
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5234

165

reference_url	https://access.redhat.com/errata/RHSA-2020:5235
reference_id	RHSA-2020:5235
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5235

166

reference_url	https://access.redhat.com/errata/RHSA-2020:5236
reference_id	RHSA-2020:5236
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5236

167

reference_url	https://access.redhat.com/errata/RHSA-2020:5237
reference_id	RHSA-2020:5237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5237

168

reference_url	https://access.redhat.com/errata/RHSA-2020:5238
reference_id	RHSA-2020:5238
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5238

169

reference_url	https://access.redhat.com/errata/RHSA-2020:5239
reference_id	RHSA-2020:5239
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5239

170

reference_url	https://access.redhat.com/errata/RHSA-2020:5240
reference_id	RHSA-2020:5240
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5240

171

reference_url	https://access.redhat.com/errata/RHSA-2020:5257
reference_id	RHSA-2020:5257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5257

172

reference_url	https://access.redhat.com/errata/RHSA-2020:5314
reference_id	RHSA-2020:5314
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5314

173

reference_url	https://usn.ubuntu.com/4637-1/
reference_id	USN-4637-1
reference_type
scores
url	https://usn.ubuntu.com/4637-1/

174

reference_url	https://usn.ubuntu.com/4637-2/
reference_id	USN-4637-2
reference_type
scores
url	https://usn.ubuntu.com/4637-2/

175

reference_url	https://usn.ubuntu.com/4647-1/
reference_id	USN-4647-1
reference_type
scores
url	https://usn.ubuntu.com/4647-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.5.0-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2020-16012

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-45d6-1r5e-s7aj

url VCID-6eys-xz5e-47ck

vulnerability_id VCID-6eys-xz5e-47ck

summary In certain circumstances, the MCallGetProperty opcode can be emitted with unmet assumptions resulting in an exploitable use-after-free condition.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26950.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26950.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-26950

reference_id

reference_type

scores

value	0.48274
scoring_system	epss
scoring_elements	0.97791
published_at	2026-06-04T12:55:00Z

value	0.48274
scoring_system	epss
scoring_elements	0.97795
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-26950

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26950
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26950

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1896306
reference_id	1896306
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1896306

reference_url	https://security.archlinux.org/ASA-202011-6
reference_id	ASA-202011-6
reference_type
scores
url	https://security.archlinux.org/ASA-202011-6

reference_url

https://security.archlinux.org/AVG-1265

reference_id

AVG-1265

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1265

reference_url	https://security.gentoo.org/glsa/202011-07
reference_id	GLSA-202011-07
reference_type
scores
url	https://security.gentoo.org/glsa/202011-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-49

reference_id

mfsa2020-49

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-49

reference_url	https://access.redhat.com/errata/RHSA-2020:5099
reference_id	RHSA-2020:5099
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5099

reference_url	https://access.redhat.com/errata/RHSA-2020:5100
reference_id	RHSA-2020:5100
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5100

reference_url	https://access.redhat.com/errata/RHSA-2020:5104
reference_id	RHSA-2020:5104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5104

reference_url	https://access.redhat.com/errata/RHSA-2020:5135
reference_id	RHSA-2020:5135
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5135

reference_url	https://access.redhat.com/errata/RHSA-2020:5138
reference_id	RHSA-2020:5138
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5138

reference_url	https://access.redhat.com/errata/RHSA-2020:5139
reference_id	RHSA-2020:5139
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5139

reference_url	https://access.redhat.com/errata/RHSA-2020:5146
reference_id	RHSA-2020:5146
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5146

reference_url	https://access.redhat.com/errata/RHSA-2020:5162
reference_id	RHSA-2020:5162
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5162

reference_url	https://access.redhat.com/errata/RHSA-2020:5163
reference_id	RHSA-2020:5163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5163

reference_url	https://access.redhat.com/errata/RHSA-2020:5164
reference_id	RHSA-2020:5164
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5164

reference_url	https://access.redhat.com/errata/RHSA-2020:5166
reference_id	RHSA-2020:5166
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5166

reference_url	https://access.redhat.com/errata/RHSA-2020:5167
reference_id	RHSA-2020:5167
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5167

reference_url	https://usn.ubuntu.com/4625-1/
reference_id	USN-4625-1
reference_type
scores
url	https://usn.ubuntu.com/4625-1/

reference_url	https://usn.ubuntu.com/4647-1/
reference_id	USN-4647-1
reference_type
scores
url	https://usn.ubuntu.com/4647-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.5.0-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2020-26950

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6eys-xz5e-47ck

url VCID-fqmb-awv7-mfas

vulnerability_id VCID-fqmb-awv7-mfas

summary Mozilla developers and community members Jason Kratzer, Simon Giesecke, Philipp, and Christian Holler reported memory safety bugs present in Thunderbird 78.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15683.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15683.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-15683

reference_id

reference_type

scores

value	0.02114
scoring_system	epss
scoring_elements	0.84453
published_at	2026-06-05T12:55:00Z

value	0.02114
scoring_system	epss
scoring_elements	0.84429
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-15683

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15683
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15683

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15969
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15969

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1889932
reference_id	1889932
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1889932

reference_url	https://security.archlinux.org/ASA-202011-1
reference_id	ASA-202011-1
reference_type
scores
url	https://security.archlinux.org/ASA-202011-1

reference_url

https://security.archlinux.org/AVG-1256

reference_id

AVG-1256

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1256

reference_url	https://security.gentoo.org/glsa/202010-08
reference_id	GLSA-202010-08
reference_type
scores
url	https://security.gentoo.org/glsa/202010-08

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-45

reference_id

mfsa2020-45

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-45

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-46

reference_id

mfsa2020-46

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-46

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-47

reference_id

mfsa2020-47

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-47

reference_url	https://access.redhat.com/errata/RHSA-2020:4310
reference_id	RHSA-2020:4310
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4310

reference_url	https://access.redhat.com/errata/RHSA-2020:4311
reference_id	RHSA-2020:4311
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4311

reference_url	https://access.redhat.com/errata/RHSA-2020:4315
reference_id	RHSA-2020:4315
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4315

reference_url	https://access.redhat.com/errata/RHSA-2020:4317
reference_id	RHSA-2020:4317
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4317

reference_url	https://access.redhat.com/errata/RHSA-2020:4330
reference_id	RHSA-2020:4330
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4330

reference_url	https://access.redhat.com/errata/RHSA-2020:4909
reference_id	RHSA-2020:4909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4909

reference_url	https://access.redhat.com/errata/RHSA-2020:4913
reference_id	RHSA-2020:4913
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4913

reference_url	https://access.redhat.com/errata/RHSA-2020:4944
reference_id	RHSA-2020:4944
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4944

reference_url	https://access.redhat.com/errata/RHSA-2020:4945
reference_id	RHSA-2020:4945
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4945

reference_url	https://access.redhat.com/errata/RHSA-2020:4947
reference_id	RHSA-2020:4947
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4947

reference_url	https://access.redhat.com/errata/RHSA-2020:4948
reference_id	RHSA-2020:4948
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4948

reference_url	https://usn.ubuntu.com/4599-1/
reference_id	USN-4599-1
reference_type
scores
url	https://usn.ubuntu.com/4599-1/

reference_url	https://usn.ubuntu.com/4599-2/
reference_id	USN-4599-2
reference_type
scores
url	https://usn.ubuntu.com/4599-2/

reference_url	https://usn.ubuntu.com/4647-1/
reference_id	USN-4647-1
reference_type
scores
url	https://usn.ubuntu.com/4647-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.5.0-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2020-15683

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fqmb-awv7-mfas

url VCID-fs96-6a57-dfeq

vulnerability_id VCID-fs96-6a57-dfeq

summary Firefox did not block execution of scripts with incorrect MIME types when the response was intercepted and cached through a ServiceWorker. This could lead to a cross-site script inclusion vulnerability, or a Content Security Policy bypass.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26958.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26958.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-26958

reference_id

reference_type

scores

value	0.00661
scoring_system	epss
scoring_elements	0.71561
published_at	2026-06-05T12:55:00Z

value	0.00661
scoring_system	epss
scoring_elements	0.71518
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-26958

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1898735
reference_id	1898735
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1898735

reference_url	https://security.archlinux.org/ASA-202011-12
reference_id	ASA-202011-12
reference_type
scores
url	https://security.archlinux.org/ASA-202011-12

reference_url

https://security.archlinux.org/AVG-1279

reference_id

AVG-1279

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1279

reference_url	https://security.gentoo.org/glsa/202012-03
reference_id	GLSA-202012-03
reference_type
scores
url	https://security.gentoo.org/glsa/202012-03

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_id

mfsa2020-50

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_id

mfsa2020-51

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_id

mfsa2020-52

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_url	https://access.redhat.com/errata/RHSA-2020:5231
reference_id	RHSA-2020:5231
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5231

reference_url	https://access.redhat.com/errata/RHSA-2020:5232
reference_id	RHSA-2020:5232
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5232

reference_url	https://access.redhat.com/errata/RHSA-2020:5233
reference_id	RHSA-2020:5233
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5233

reference_url	https://access.redhat.com/errata/RHSA-2020:5234
reference_id	RHSA-2020:5234
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5234

reference_url	https://access.redhat.com/errata/RHSA-2020:5235
reference_id	RHSA-2020:5235
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5235

reference_url	https://access.redhat.com/errata/RHSA-2020:5236
reference_id	RHSA-2020:5236
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5236

reference_url	https://access.redhat.com/errata/RHSA-2020:5237
reference_id	RHSA-2020:5237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5237

reference_url	https://access.redhat.com/errata/RHSA-2020:5238
reference_id	RHSA-2020:5238
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5238

reference_url	https://access.redhat.com/errata/RHSA-2020:5239
reference_id	RHSA-2020:5239
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5239

reference_url	https://access.redhat.com/errata/RHSA-2020:5240
reference_id	RHSA-2020:5240
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5240

reference_url	https://access.redhat.com/errata/RHSA-2020:5257
reference_id	RHSA-2020:5257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5257

reference_url	https://access.redhat.com/errata/RHSA-2020:5314
reference_id	RHSA-2020:5314
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5314

reference_url	https://usn.ubuntu.com/4637-1/
reference_id	USN-4637-1
reference_type
scores
url	https://usn.ubuntu.com/4637-1/

reference_url	https://usn.ubuntu.com/4637-2/
reference_id	USN-4637-2
reference_type
scores
url	https://usn.ubuntu.com/4637-2/

reference_url	https://usn.ubuntu.com/4647-1/
reference_id	USN-4647-1
reference_type
scores
url	https://usn.ubuntu.com/4647-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.5.0-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2020-26958

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fs96-6a57-dfeq

url VCID-jjfz-7dhb-vbc7

vulnerability_id VCID-jjfz-7dhb-vbc7

summary Searching for a single word from the address bar caused an mDNS request to be sent on the local network searching for a hostname consisting of that string; resulting in an information leak.*Note: This issue only affected Windows operating systems. Other operating systems are unaffected.*

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26966.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26966.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-26966

reference_id

reference_type

scores

value	0.00354
scoring_system	epss
scoring_elements	0.58
published_at	2026-06-04T12:55:00Z

value	0.00354
scoring_system	epss
scoring_elements	0.5805
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-26966

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1898740
reference_id	1898740
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1898740

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_id

mfsa2020-50

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_id

mfsa2020-51

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_id

mfsa2020-52

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

fixed_packages

url	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.5.0-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2020-26966

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jjfz-7dhb-vbc7

url VCID-up7t-u4vt-3yfh

vulnerability_id VCID-up7t-u4vt-3yfh

summary Mozilla developers Steve Fink, Jason Kratzer, Randell Jesup, Christian Holler, and Byron Campen reported memory safety bugs present in Firefox 82 and Firefox ESR 78.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26968.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26968.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-26968

reference_id

reference_type

scores

value	0.00557
scoring_system	epss
scoring_elements	0.68571
published_at	2026-06-05T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.6853
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-26968

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1898741
reference_id	1898741
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1898741

reference_url	https://security.archlinux.org/ASA-202011-12
reference_id	ASA-202011-12
reference_type
scores
url	https://security.archlinux.org/ASA-202011-12

reference_url

https://security.archlinux.org/AVG-1279

reference_id

AVG-1279

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1279

reference_url	https://security.gentoo.org/glsa/202012-03
reference_id	GLSA-202012-03
reference_type
scores
url	https://security.gentoo.org/glsa/202012-03

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_id

mfsa2020-50

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_id

mfsa2020-51

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_id

mfsa2020-52

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_url	https://access.redhat.com/errata/RHSA-2020:5231
reference_id	RHSA-2020:5231
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5231

reference_url	https://access.redhat.com/errata/RHSA-2020:5232
reference_id	RHSA-2020:5232
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5232

reference_url	https://access.redhat.com/errata/RHSA-2020:5233
reference_id	RHSA-2020:5233
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5233

reference_url	https://access.redhat.com/errata/RHSA-2020:5234
reference_id	RHSA-2020:5234
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5234

reference_url	https://access.redhat.com/errata/RHSA-2020:5235
reference_id	RHSA-2020:5235
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5235

reference_url	https://access.redhat.com/errata/RHSA-2020:5236
reference_id	RHSA-2020:5236
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5236

reference_url	https://access.redhat.com/errata/RHSA-2020:5237
reference_id	RHSA-2020:5237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5237

reference_url	https://access.redhat.com/errata/RHSA-2020:5238
reference_id	RHSA-2020:5238
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5238

reference_url	https://access.redhat.com/errata/RHSA-2020:5239
reference_id	RHSA-2020:5239
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5239

reference_url	https://access.redhat.com/errata/RHSA-2020:5240
reference_id	RHSA-2020:5240
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5240

reference_url	https://access.redhat.com/errata/RHSA-2020:5257
reference_id	RHSA-2020:5257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5257

reference_url	https://access.redhat.com/errata/RHSA-2020:5314
reference_id	RHSA-2020:5314
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5314

reference_url	https://usn.ubuntu.com/4637-1/
reference_id	USN-4637-1
reference_type
scores
url	https://usn.ubuntu.com/4637-1/

reference_url	https://usn.ubuntu.com/4637-2/
reference_id	USN-4637-2
reference_type
scores
url	https://usn.ubuntu.com/4637-2/

reference_url	https://usn.ubuntu.com/4647-1/
reference_id	USN-4647-1
reference_type
scores
url	https://usn.ubuntu.com/4647-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.5.0-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2020-26968

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-up7t-u4vt-3yfh

url VCID-z7t3-8cc4-aba4

vulnerability_id VCID-z7t3-8cc4-aba4

summary When DNS over HTTPS is in use, it intentionally filters RFC1918 and related IP ranges from the responses as these do not make sense coming from a DoH resolver. However when an IPv4 address was mapped through IPv6, these addresses were erroneously let through, leading to a potential DNS Rebinding attack.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26961.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26961.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-26961

reference_id

reference_type

scores

value	0.00275
scoring_system	epss
scoring_elements	0.51225
published_at	2026-06-05T12:55:00Z

value	0.00275
scoring_system	epss
scoring_elements	0.51164
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-26961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1898738
reference_id	1898738
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1898738

reference_url	https://security.archlinux.org/ASA-202011-12
reference_id	ASA-202011-12
reference_type
scores
url	https://security.archlinux.org/ASA-202011-12

reference_url

https://security.archlinux.org/AVG-1279

reference_id

AVG-1279

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1279

reference_url	https://security.gentoo.org/glsa/202012-03
reference_id	GLSA-202012-03
reference_type
scores
url	https://security.gentoo.org/glsa/202012-03

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_id

mfsa2020-50

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_id

mfsa2020-51

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_id

mfsa2020-52

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_url	https://access.redhat.com/errata/RHSA-2020:5231
reference_id	RHSA-2020:5231
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5231

reference_url	https://access.redhat.com/errata/RHSA-2020:5232
reference_id	RHSA-2020:5232
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5232

reference_url	https://access.redhat.com/errata/RHSA-2020:5233
reference_id	RHSA-2020:5233
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5233

reference_url	https://access.redhat.com/errata/RHSA-2020:5234
reference_id	RHSA-2020:5234
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5234

reference_url	https://access.redhat.com/errata/RHSA-2020:5235
reference_id	RHSA-2020:5235
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5235

reference_url	https://access.redhat.com/errata/RHSA-2020:5236
reference_id	RHSA-2020:5236
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5236

reference_url	https://access.redhat.com/errata/RHSA-2020:5237
reference_id	RHSA-2020:5237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5237

reference_url	https://access.redhat.com/errata/RHSA-2020:5238
reference_id	RHSA-2020:5238
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5238

reference_url	https://access.redhat.com/errata/RHSA-2020:5239
reference_id	RHSA-2020:5239
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5239

reference_url	https://access.redhat.com/errata/RHSA-2020:5240
reference_id	RHSA-2020:5240
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5240

reference_url	https://access.redhat.com/errata/RHSA-2020:5257
reference_id	RHSA-2020:5257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5257

reference_url	https://access.redhat.com/errata/RHSA-2020:5314
reference_id	RHSA-2020:5314
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5314

reference_url	https://usn.ubuntu.com/4637-1/
reference_id	USN-4637-1
reference_type
scores
url	https://usn.ubuntu.com/4637-1/

reference_url	https://usn.ubuntu.com/4637-2/
reference_id	USN-4637-2
reference_type
scores
url	https://usn.ubuntu.com/4637-2/

reference_url	https://usn.ubuntu.com/4647-1/
reference_id	USN-4647-1
reference_type
scores
url	https://usn.ubuntu.com/4647-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.5.0-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2020-26961

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z7t3-8cc4-aba4

url VCID-ztwn-2hnf-17hb

vulnerability_id VCID-ztwn-2hnf-17hb

summary During browser shutdown, reference decrementing could have occurred on a previously freed object, resulting in a use-after-free, memory corruption, and a potentially exploitable crash.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26959.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26959.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-26959

reference_id

reference_type

scores

value	0.00442
scoring_system	epss
scoring_elements	0.63623
published_at	2026-06-05T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.63581
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-26959

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16012

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26953

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26956

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26958

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26959

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26960

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26965

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26968

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1898736
reference_id	1898736
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1898736

reference_url	https://security.archlinux.org/ASA-202011-12
reference_id	ASA-202011-12
reference_type
scores
url	https://security.archlinux.org/ASA-202011-12

reference_url

https://security.archlinux.org/AVG-1279

reference_id

AVG-1279

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1279

reference_url	https://security.gentoo.org/glsa/202012-03
reference_id	GLSA-202012-03
reference_type
scores
url	https://security.gentoo.org/glsa/202012-03

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_id

mfsa2020-50

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-50

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_id

mfsa2020-51

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-51

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_id

mfsa2020-52

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2020-52

reference_url	https://access.redhat.com/errata/RHSA-2020:5231
reference_id	RHSA-2020:5231
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5231

reference_url	https://access.redhat.com/errata/RHSA-2020:5232
reference_id	RHSA-2020:5232
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5232

reference_url	https://access.redhat.com/errata/RHSA-2020:5233
reference_id	RHSA-2020:5233
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5233

reference_url	https://access.redhat.com/errata/RHSA-2020:5234
reference_id	RHSA-2020:5234
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5234

reference_url	https://access.redhat.com/errata/RHSA-2020:5235
reference_id	RHSA-2020:5235
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5235

reference_url	https://access.redhat.com/errata/RHSA-2020:5236
reference_id	RHSA-2020:5236
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5236

reference_url	https://access.redhat.com/errata/RHSA-2020:5237
reference_id	RHSA-2020:5237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5237

reference_url	https://access.redhat.com/errata/RHSA-2020:5238
reference_id	RHSA-2020:5238
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5238

reference_url	https://access.redhat.com/errata/RHSA-2020:5239
reference_id	RHSA-2020:5239
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5239

reference_url	https://access.redhat.com/errata/RHSA-2020:5240
reference_id	RHSA-2020:5240
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5240

reference_url	https://access.redhat.com/errata/RHSA-2020:5257
reference_id	RHSA-2020:5257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5257

reference_url	https://access.redhat.com/errata/RHSA-2020:5314
reference_id	RHSA-2020:5314
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5314

reference_url	https://usn.ubuntu.com/4637-1/
reference_id	USN-4637-1
reference_type
scores
url	https://usn.ubuntu.com/4637-1/

reference_url	https://usn.ubuntu.com/4637-2/
reference_id	USN-4637-2
reference_type
scores
url	https://usn.ubuntu.com/4637-2/

reference_url	https://usn.ubuntu.com/4647-1/
reference_id	USN-4647-1
reference_type
scores
url	https://usn.ubuntu.com/4647-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/firefox-esr@78.5.0-r0?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.5.0-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

aliases CVE-2020-26959

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ztwn-2hnf-17hb

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.5.0-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

Package Instance