CVE-2020-26976 – When a HTTPS pages was embedded in a HTTP page, and there was a service worker registered …

7 January 2021

Vuln ID: CVE-2020-26976

Published: 2021-01-07 14:15:12Z

Description: When a HTTPS pages was embedded in a HTTP page, and there was a service worker registered for the former, the service worker could have intercepted the request for the secure page despite the iframe not being a secure context due to the (insecure) framing. This vulnerability affects Firefox < 84.

Source: NVD.NIST.GOV

Date:

7 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Experts weigh in on Omni Hotel ransomware incident29 April 2024
Commvault debuts on-demand cloud cleanrooms for cyber recovery operations29 April 2024
What to know about each stage of the CISO maturation cycle29 April 2024
Security leaders respond to disruption of LabHost, a fraud website29 April 2024
Silobreaker empowers users with timely insight into key cybersecurity incident filings29 April 2024