0.001 Low
EPSS
Percentile
43.5%
Using object or embed tags, it was possible to frame other websites, even if they disallowed framing using the X-Frame-Options header. This vulnerability affects Thunderbird < 78 and Firefox < 78.0.2.
bugzilla.redhat.com/show_bug.cgi?id=1872537
nvd.nist.gov/vuln/detail/CVE-2020-15648
www.cve.org/CVERecord?id=CVE-2020-15648
www.mozilla.org/en-US/security/advisories/mfsa2020-28/#CVE-2020-15648