CVE-2020-6810 log

Source
Severity Medium
Remote Yes
Type Content spoofing
Description
A security issue has been found in Firefox before 74 where, after a website had entered fullscreen mode, it could have used a previously opened popup to obscure the notification that indicates the browser is in fullscreen mode. Combined with spoofing the browser chrome, this could have led to confusing the user about the current origin of the page and credential theft or other attacks.
Group Package Affected Fixed Severity Status Ticket
AVG-1112 firefox 73.0.1-1 74.0-1 Critical Fixed
Date Advisory Group Package Severity Description
11 Mar 2020 ASA-202003-8 AVG-1112 firefox Critical multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6810
https://bugzilla.mozilla.org/show_bug.cgi?id=1432856