CVE-2020-26962 log
| Source |
|
| Severity | Low |
| Remote | Yes |
| Type | Access restriction bypass |
| Description | A security issue has been found in Firefox before 83.0, where cross-origin iframes that contained a login form could have been recognized by the login autofill service, and populated. This could have been used in clickjacking attacks, as well as be read across partitions in dynamic first party isolation. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-1279 | firefox | 82.0.3-1 | 83.0-1 | Critical | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 17 Nov 2020 | ASA-202011-12 | AVG-1279 | firefox | Critical | multiple issues |
| References |
|---|
https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-26962 https://bugzilla.mozilla.org/show_bug.cgi?id=610997 |