CVE-2020-15653
CVSS v3.1
6.5 (Medium)
CVSS v2.0
4.3 (Medium)
EPSS
0.23 % (62th)
Affected Products
4
Advisories
15
An iframe sandbox element with the allow-popups flag could be bypassed when using noopener links. This could have led to security issues for websites relying on sandbox configurations that allowed popups and hosted arbitrary content. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbird < 78.1.
Weaknesses
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2020-08-10 18:15:12
(4 years ago) - Updated Date
-
2023-02-02 22:19:14
(19 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...