Firefox Zero Days Exploited in the Wild (CVE-2020-6819, CVE-2

Firefox Zero Days Exploited in the Wild (CVE-2020-6819, CVE-2020-6820)

On Friday, April 3, the Mozilla Foundation published an advisory for Firefox and Firefox Extended Support Release (ESR) to address a pair of zero-day vulnerabilities that were exploited in the wild as part of “targeted attacks.”

Francisco Alonso, one of the security researchers that discovered these vulnerabilities, cautioned that there were “more details to be published (including other browsers)” implying that these flaws may extend to other browsers or that the attacks may have also targeted additional vulnerabilities in other browsers. We anticipate details about the other browsers will be announced in the near future.

For more details, including product coverage, please visit our blog.

Cyber Exposure Alerts

Vulnerability Watch

Forum Discussion

Firefox Zero Days Exploited in the Wild (CVE-2020-6819, CVE-2

Recent Discussions

Microsoft Patch Tuesday 2025 Year in Review

Microsoft’s December 2025 Patch Tuesday Addresses 56 CVEs (CVE-2025-62221)

React2Shell: FAQ about React Server Components Vulnerability (CVE-2025-55182)

CVE-2025-64446: Fortinet FortiWeb Zero-Day Path Traversal Vulnerability Exploited in the Wild

Microsoft’s November 2025 Patch Tuesday Addresses 63 CVEs

Americas

Europe

Asia / Australia