VYPR
Unrated severityNVD Advisory· Published Jan 7, 2021· Updated Aug 4, 2024

CVE-2020-26976

CVE-2020-26976

Description

When a HTTPS pages was embedded in a HTTP page, and there was a service worker registered for the former, the service worker could have intercepted the request for the secure page despite the iframe not being a secure context due to the (insecure) framing. This vulnerability affects Firefox < 84.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

41

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.