CVE-2020-15655 - log back

CVE-2020-15655 edited at 01 Sep 2020 20:37:34
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Information disclosure
Description
+ A redirected HTTP request which is observed or modified through a web extension could bypass existing CORS checks, leading to potential disclosure of cross-origin information. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.
References
+ https://www.mozilla.org/en-US/security/advisories/mfsa2020-33/#CVE-2020-15655
Notes
CVE-2020-15655 created at 31 Jul 2020 15:14:59