{
  "affected": [
    {
      "database_specific": {
        "unresolved_ranges": [
          {
            "events": [
              {
                "introduced": "0"
              },
              {
                "fixed": "73.0"
              }
            ]
          },
          {
            "events": [
              {
                "introduced": "0"
              },
              {
                "fixed": "68.5.0"
              }
            ]
          },
          {
            "events": [
              {
                "introduced": "0"
              },
              {
                "fixed": "68.5.0"
              }
            ]
          }
        ]
      }
    }
  ],
  "details": "By downloading a file with the .fileloc extension, a semi-privileged extension could launch an arbitrary application on the user's computer. The attacker is restricted as they are unable to download non-quarantined files or supply command line arguments to the application, limiting the impact. Note: this issue only occurs on Mac OSX. Other operating systems are unaffected. This vulnerability affects Thunderbird \u003c 68.5, Firefox \u003c 73, and Firefox \u003c ESR68.5.",
  "id": "CVE-2020-6797",
  "modified": "2026-03-15T21:44:55.248327027Z",
  "published": "2020-03-02T05:15:13.277Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://security.gentoo.org/glsa/202003-02"
    },
    {
      "type": "ADVISORY",
      "url": "https://www.mozilla.org/security/advisories/mfsa2020-05/"
    },
    {
      "type": "ADVISORY",
      "url": "https://www.mozilla.org/security/advisories/mfsa2020-06/"
    },
    {
      "type": "ADVISORY",
      "url": "https://www.mozilla.org/security/advisories/mfsa2020-07/"
    },
    {
      "type": "REPORT",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1596668"
    }
  ],
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
      "type": "CVSS_V3"
    }
  ]
}