Security Advisory

CVE-2020-15680

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-10-22 20:32:46

Last updated 2024-08-04 13:22:30

Assigner mozilla

State PUBLISHED

Description

If a valid external protocol handler was referenced in an image tag, the resulting broken image size could be distinguished from a broken image size of a non-existent protocol handler. This allowed an attacker to successfully probe whether an external protocol handler was registered. This vulnerability affects Firefox < 82.

← Browse all CVEs View on cve.org ↗