CVE-2020-26966
09.12.2020, 01:15
Searching for a single word from the address bar caused an mDNS request to be sent on the local network searching for a hostname consisting of that string; resulting in an information leak. *Note: This issue only affected Windows operating systems. Other operating systems are unaffected.*. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and Thunderbird < 78.5.Enginsight
Vendor | Product | Version |
---|---|---|
mozilla | firefox | 𝑥 < 83.0 |
mozilla | firefox_esr | 𝑥 < 78.5 |
mozilla | thunderbird | 𝑥 < 78.5 |
𝑥
= Vulnerable software versions

Debian Releases
Debian Product | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
firefox |
| ||||||||||||
firefox-esr |
| ||||||||||||
thunderbird |
|

Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
firefox |
| ||||||||||||||||||||||||
mozjs38 |
| ||||||||||||||||||||||||
mozjs52 |
| ||||||||||||||||||||||||
mozjs60 |
| ||||||||||||||||||||||||
mozjs68 |
| ||||||||||||||||||||||||
thunderbird |
|
References