Security Advisory

CVE-2020-12412

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-07-09 14:47:46

Last updated 2024-08-04 11:56:52

Assigner mozilla

State PUBLISHED

Description

By navigating a tab using the history API, an attacker could cause the address bar to display the incorrect domain (with the https:// scheme, a blocked port number such as 1, and without a lock icon) while controlling the page contents. This vulnerability affects Firefox < 70.

← Browse all CVEs View on cve.org ↗