← voltar
CVE-2020-26962

CVE-2020-26962

EPSS 0.7%
Cross-origin iframes that contained a login form could have been recognized by the login autofill service, and populated. This could have been used in clickjacking attacks, as well as be read across partitions in dynamic first party isolation. This vulnerability affects Firefox < 83.
Produtos afetados
Mozilla · Firefox

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugzilla.mozilla.org/show_bug.cgi?id=610997https://www.mozilla.org/security/advisories/mfsa2020-50/