Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:mozilla/Firefox%20ESR@68.7.0
purl pkg:mozilla/Firefox%20ESR@68.7.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-2xtz-k8nq-n3hf A malicious Android application could craft an Intent that would have been processed by Firefox for Android and potentially result in a file overwrite in the user's profile directory. One exploitation vector for this would be to supply a user.js file providing arbitrary malicious preference values. Control of arbitrary preferences can lead to sufficient compromise such that it is generally equivalent to arbitrary code execution. *Note: This issue only affects Firefox for Android. Other operating systems are unaffected.* CVE-2020-6828

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T13:17:07.172363+00:00 Mozilla Importer Fixing VCID-2xtz-k8nq-n3hf https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2020/mfsa2020-13.yml 38.0.0