Security Advisory

CVE-2020-12404

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-07-09 14:44:16

Last updated 2024-08-04 11:56:51

Assigner mozilla

State PUBLISHED

Description

For native-to-JS bridging the app requires a unique token to be passed that ensures non-app code cant call the bridging functions. That token could leak when used for downloading files. This vulnerability affects Firefox for iOS < 26.

← Browse all CVEs View on cve.org ↗