Security Advisory

CVE-2019-17002

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-08 21:13:48

Last updated 2024-08-05 01:24:48

Assigner mozilla

State PUBLISHED

Description

If upgrade-insecure-requests was specified in the Content Security Policy, and a link was dragged and dropped from that page, the link was not upgraded to https. This vulnerability affects Firefox < 70.

← Browse all CVEs View on cve.org ↗