---

CVE-2020-15653 - log back

CVE-2020-15653 edited at 01 Sep 2020 20:36:29
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Authentication bypass
Description	+ An iframe sandbox element with the allow-popups flag could be bypassed when using noopener links. This could have led to security issues for websites relying on sandbox configurations that allowed popups and hosted arbitrary content. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2020-33/#CVE-2020-15653
Notes

CVE-2020-15653 created at 31 Jul 2020 15:14:59