CVE-2017-7787 - log back

CVE-2017-7787 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Same-origin policy bypass
Description
+ Same-origin policy protections can be bypassed in firefox < 55.0 and thunderbird < 52.3, on pages with embedded iframes during page reloads, allowing the iframes to access content on the top level page and leading to information disclosure.
References
+ https://www.mozilla.org/en-US/security/advisories/mfsa2017-18/#CVE-2017-7787
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1322896
Notes