CVE-2020-15652 - log back

CVE-2020-15652 edited at 01 Sep 2020 20:35:56
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Information disclosure
Description
+ By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This applied only to content that can be parsed as script. This vulnerability affects Firefox < 79, Firefox ESR < 68.11, Firefox ESR < 78.1, Thunderbird < 68.11, and Thunderbird < 78.1.
References
+ https://www.mozilla.org/en-US/security/advisories/mfsa2020-31/#CVE-2020-15652
Notes
CVE-2020-15652 created at 31 Jul 2020 15:14:59