Unrated severityNVD Advisory· Published Jan 7, 2021· Updated Aug 4, 2024
CVE-2020-26979
CVE-2020-26979
Description
When a user typed a URL in the address bar or the search bar and quickly hit the enter key, a website could sometimes capture that event and then redirect the user before navigation occurred to the desired, entered address. To construct a convincing spoof the attacker would have had to guess what the user was typing, perhaps by suggesting it. This vulnerability affects Firefox < 84.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4<84+ 1 more
- (no CPE)range: <84
- (no CPE)range: unspecified
- osv-coords2 versionspkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweed
< 128.5.1-1.1+ 1 more
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 92.0-1.2
Patches
Vulnerability mechanics
References
2- bugzilla.mozilla.org/buglist.cgimitrex_refsource_MISC
- www.mozilla.org/security/advisories/mfsa2020-54/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.