By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This applied only to content that can be parsed as script. This vulnerability affects Firefox < 79, Firefox ESR < 68.11, Firefox ESR < 78.1, Thunderbird < 68.11, and Thunderbird < 78.1.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2020-08-10T17:43:24

Updated: 2024-08-04T13:22:30.541Z

Reserved: 2020-07-10T00:00:00

Link: CVE-2020-15652

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-08-10T18:15:12.297

Modified: 2024-11-21T05:05:56.907

Link: CVE-2020-15652

cve-icon Redhat

Severity : Important

Publid Date: 2020-07-28T00:00:00Z

Links: CVE-2020-15652 - Bugzilla