1. Home
  2. Vulnerabilities
  3. CVE-2020-26967

CVE-2020-26967

CVSS v3.1 6.5 (Medium)
65% Progress
CVSS v2.0 4.3 (Medium)
43% Progress
EPSS 0.08 % (36th)
0.08% Progress
Affected Products 1
Advisories 5
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

When listening for page changes with a Mutation Observer, a malicious web page could confuse Firefox Screenshots into interacting with elements other than those that it injected into the page. This would lead to internal errors and unexpected behavior in the Screenshots code. This vulnerability affects Firefox < 83.

Weaknesses
CWE-NVD-noinfo
CVE Status
PUBLISHED
CNA
Mozilla Corporation
Published Date
2020-12-09 01:15:13
(3 years ago)
Updated Date
2020-12-10 16:28:25
(3 years ago)

Affected Products

Mozilla

Configuration #1

    CPE23 From Up To
  Mozilla Firefox prior 83.0 version cpe:2.3:a:mozilla:firefox < 83.0