Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-15652

Опубликовано: 10 авг. 2020
Источник: debian
EPSS Низкий

Описание

By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This applied only to content that can be parsed as script. This vulnerability affects Firefox < 79, Firefox ESR < 68.11, Firefox ESR < 78.1, Thunderbird < 68.11, and Thunderbird < 78.1.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefoxfixed79.0-1package
firefox-esrfixed68.11.0esr-1package
thunderbirdfixed1:68.11.0-1package

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2020-31/#CVE-2020-15652

  • https://www.mozilla.org/en-US/security/advisories/mfsa2020-32/#CVE-2020-15652

  • https://www.mozilla.org/en-US/security/advisories/mfsa2020-33/#CVE-2020-15652

  • https://www.mozilla.org/en-US/security/advisories/mfsa2020-35/#CVE-2020-15652

EPSS

Процентиль: 77%
0.01055
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2020-15652

CVSS3: 6.5
ubuntu
больше 5 лет назад

By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This applied only to content that can be parsed as script. This vulnerability affects Firefox < 79, Firefox ESR < 68.11, Firefox ESR < 78.1, Thunderbird < 68.11, and Thunderbird < 78.1.

redhat логотип

CVE-2020-15652

CVSS3: 6.5
redhat
больше 5 лет назад

By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This applied only to content that can be parsed as script. This vulnerability affects Firefox < 79, Firefox ESR < 68.11, Firefox ESR < 78.1, Thunderbird < 68.11, and Thunderbird < 78.1.

nvd логотип

CVE-2020-15652

CVSS3: 6.5
nvd
больше 5 лет назад

By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This applied only to content that can be parsed as script. This vulnerability affects Firefox < 79, Firefox ESR < 68.11, Firefox ESR < 78.1, Thunderbird < 68.11, and Thunderbird < 78.1.

github логотип

GHSA-2wfj-m7vx-f7mf

CVSS3: 6.5
github
больше 3 лет назад

By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This applied only to content that can be parsed as script. This vulnerability affects Firefox < 79, Firefox ESR < 68.11, Firefox ESR < 78.1, Thunderbird < 68.11, and Thunderbird < 78.1.

fstec логотип

BDU:2022-05935

CVSS3: 6.5
fstec
больше 5 лет назад

Уязвимость браузеров Mozilla Firefox, Mozilla Firefox ESR и почтового клиента Thunderbird, связанная с утечкой информации в сообщениях об ошибках, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 77%
0.01055
Низкий