### [CVE-2020-6796](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6796)
![](https://img.shields.io/static/v1?label=Product&message=Firefox&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2073%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Missing%20bounds%20check%20on%20shared%20memory%20read%20in%20the%20parent%20process&color=brighgreen)

### Description

A content process could have modified shared memory relating to crash reporting information, crash itself, and cause an out-of-bound write. This could have caused memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 73 and Firefox < ESR68.5.

### POC

#### Reference
- https://bugzilla.mozilla.org/show_bug.cgi?id=1610426
- https://bugzilla.mozilla.org/show_bug.cgi?id=1610426

#### Github
- https://github.com/ARPSyndicate/cvemon