CVE-2020-26973

Certain input to the CSS Sanitizer confused it, resulting in incorrect components being removed. This could have been used as a sanitizer bypass. This vulnerability affects Firefox < 84, Thunderbird < 78.6, and Firefox ESR < 78.6.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-01-07 14:15

Updated : 2024-02-28 18:08


NVD link : CVE-2020-26973

Mitre link : CVE-2020-26973

CVE.ORG link : CVE-2020-26973


JSON object : View

Products Affected

mozilla

  • firefox
  • thunderbird
  • firefox_esr