CVE-2020-12404

Published: 2020-07-09T15:15Z

Last Modified: 2024-11-21T04:59Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

For native-to-JS bridging the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token could leak when used for downloading files. This vulnerability affects Firefox for iOS < 26. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt