The Firefox Health Reports (aka FHR or about:healthreport) feature in Mozilla Firefox before 46.0 does not properly restrict the origin of events, which makes it easier for remote attackers to modify sharing preferences by leveraging access to the remote-report IFRAME element.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mozilla
Published: 2016-04-30T17:00:00
Updated: 2017-06-30T16:57:01
Reserved: 2016-03-01T00:00:00
Link: CVE-2016-2820
JSON object: View
NVD Information
Status : Modified
Published: 2016-04-30T17:59:15.773
Modified: 2017-07-01T01:29:40.983
Link: CVE-2016-2820
JSON object: View
Redhat Information
No data.
CWE