5 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-6813
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When protecting CSS blocks with the nonce feature of Content Security Policy, the @import statement in the CSS block could allow an attacker to inject arbitrary...
CVE-2020-6813
When protecting CSS blocks with the nonce feature of Content Security Policy, the @import statement in the CSS block could allow an attacker to inject arbitrary styles, bypassing the intent of the Content Security Policy. This vulnerability affects Firefox 74...
CVE-2020-6813
CVE-2020-6813 affects Firefox prior to 74, where protecting CSS blocks with the Content Security Policy nonce could be bypassed via an @import in a CSS block, allowing style injection and bypass of CSP intent. The IBM bulletin for IBM Cloud App Management documents this exact CVE and notes the vu...
Mozilla Firefox Security Advisories (MFSA2020-08, MFSA2020-09) - Windows
Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...
USN-4299-1: Firefox vulnerabilities
Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, spoof the URL or other browser chrome, obtain sensitive information, bypass Content Security Policy CSP...