CVE-2020-15653 log

Source
Severity Medium
Remote Yes
Type Authentication bypass
Description
An iframe sandbox element with the allow-popups flag could be bypassed when using noopener links. This could have led to security issues for websites relying on sandbox configurations that allowed popups and hosted arbitrary content. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.
Group Package Affected Fixed Severity Status Ticket
AVG-1214 thunderbird 68.11.0-1 68.12.0-1 High Fixed
AVG-1213 firefox 78.0.2-1 79.0-1 High Fixed
References
https://www.mozilla.org/en-US/security/advisories/mfsa2020-33/#CVE-2020-15653