cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-15679,https://securityvulnerability.io/vulnerability/CVE-2020-15679,OAuth Session Fixation Vulnerability in Mozilla VPN Products,"An OAuth session fixation vulnerability exists within the login flow of Mozilla VPN, enabling malicious actors to craft a deceptive login URL. When a victim logs in through this manipulated link, the attacker can gain authenticated access, provided both parties share the same source IP. This could permit attackers to monitor session states or terminate the victim's VPN sessions, compromising user security and privacy.",Mozilla,"Mozilla Vpn iOS 1.0.7,Mozilla Vpn Windows,Mozilla Vpn Android 1.1.0",7.6,HIGH,0.0015300000086426735,false,,false,false,false,,,false,false,,2022-12-22T00:00:00.000Z,0