Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:11 p.m.7 views

CVE-2020-12404

For native-to-JS bridging the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token could leak when used for downloading files. This vulnerability affects Firefox for iOS 26...

4.3CVSS6.4AI score0.00784EPSS
Exploits0
NVD
NVD
added 2020/07/09 3:15 p.m.27 views

CVE-2020-12404

For native-to-JS bridging the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token could leak when used for downloading files. This vulnerability affects Firefox for iOS 26...

4.3CVSS0.00784EPSS
Exploits0References2
CVE
CVE
added 2020/07/09 2:44 p.m.61 views

CVE-2020-12404

Summary of CVE-2020-12404 (Firefox iOS): The vulnerability arises in the native-to-JS bridge where a unique token is required to call bridging functions. The token could leak during file download, potentially enabling non-app code to access bridging functionality. Affected product: Firefox for iO...

4.3CVSS4.1AI score0.00784EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/07/09 2:44 p.m.27 views

CVE-2020-12404

For native-to-JS bridging the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token could leak when used for downloading files. This vulnerability affects Firefox for iOS 26...

4.1AI score0.00784EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2020/05/26 6:15 p.m.27 views

CVE-2020-6830

For native-to-JS bridging, the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token was being used for JS-to-native also, but it isn't needed in this case, and its usage was also leaking this token. This vulnerability affects Firefox for...

7.5CVSS7.1AI score0.00903EPSS
Exploits0References3
Prion
Prion
added 2020/05/26 6:15 p.m.18 views

Code injection

For native-to-JS bridging, the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token was being used for JS-to-native also, but it isn't needed in this case, and its usage was also leaking this token. This vulnerability affects Firefox for...

5CVSS7AI score0.00903EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/26 5:6 p.m.24 views

CVE-2020-6830

For native-to-JS bridging, the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token was being used for JS-to-native also, but it isn't needed in this case, and its usage was also leaking this token. This vulnerability affects Firefox for...

7AI score0.00903EPSS
Exploits0References2
Rows per page
Query Builder