vulnerability
Ubuntu: (CVE-2020-15648): firefox vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Aug 10, 2020 | Nov 19, 2024 | Mar 27, 2026 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Aug 10, 2020
Added
Nov 19, 2024
Modified
Mar 27, 2026
Description
Using object or embed tags, it was possible to frame other websites, even if they disallowed framing using the X-Frame-Options header. This vulnerability affects Thunderbird < 78 and Firefox < 78.0.2.
Solutions
ubuntu-upgrade-firefoxubuntu-upgrade-thunderbird
References
- CVE-2020-15648
- https://attackerkb.com/topics/CVE-2020-15648
- CWE-1021
- EUVD-EUVD-2020-7635
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2020-7635
- https://www.cve.org/CVERecord?id=CVE-2020-15648
- https://www.mozilla.org/security/advisories/mfsa2020-28/
- https://www.mozilla.org/security/advisories/mfsa2020-29/
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.