Security Advisory

CVE-2020-26962

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-09 00:24:00

Last updated 2024-08-04 16:03:23

Assigner mozilla

State PUBLISHED

Description

Cross-origin iframes that contained a login form could have been recognized by the login autofill service, and populated. This could have been used in clickjacking attacks, as well as be read across partitions in dynamic first party isolation. This vulnerability affects Firefox < 83.

← Browse all CVEs View on cve.org ↗