CVE-2020-15662

Summary

A rogue webpage could override the injected WKUserScript used by the download feature, this exploit could result in the user downloading an unintended file. This vulnerability affects Firefox for iOS < 28.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefox for iOSunspecified < 28affected

Weaknesses

  • Download JS user script can be overidden

ADP Enrichment

CVE Program Container

Additional References

References