Lucene search

K
redhatcveRedhat.comRH:CVE-2019-9817
HistoryApr 08, 2020 - 5:29 a.m.

CVE-2019-9817

2020-04-0805:29:04
redhat.com
access.redhat.com
16
canvas object
same-origin policy
thunderbird
firefox
vulnerability

EPSS

0.003

Percentile

69.6%

Images from a different domain can be read using a canvas object in some circumstances. This could be used to steal image data from a different site in violation of same-origin policy. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.