CVE-2019-11737 log

Severity Low
Remote Yes
Type Access restriction bypass
In Firefox before 69.0, if a wildcard ('*') is specified for the host in Content Security Policy (CSP) directives, any port or path restriction of the directive will be ignored, leading to CSP directives not being properly applied to content.
Group Package Affected Fixed Severity Status Ticket
AVG-1036 firefox 68.0.2-1 69.0-1 High Fixed
Date Advisory Group Package Severity Type
04 Sep 2019 ASA-201909-2 AVG-1036 firefox High multiple issues