Popis
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code, spoof user interface, perform cross-site scripting attack.
Below is a complete list of vulnerabilities:
- A pointer operation vulnerability can be exploited to cause denial of service.
- A security bypass vulnerability can be exploited to bypass security restrictions.
- A HTTP Auth phishing vulnerability can be exploited to obtain sensitive information.
- OSI vulnerability in MediaError message property can be exploited to obtain sensitive information.
- A memory safety vulnerability can be exploited to execute arbitrary code.
- A security vulnerability in Referrer-Policy can be exploited to obtain sensitive information.
- A security bypass vulnerability in Content Security Policy violation report to obtain sensitive information.
- A security UI vulnerability in web manifests for Android can be exploited to spoof user interface.
- A time-of-check-time-of-use vulnerability in application directories on Android can be exploited to obtain sensitive information.
- A cross-site-scripting (XSS) vulnerability in the DOMParser API can be exploited to perform cross-site scripting attack.
Oficiální doporučení
Vykořisťování
Public exploits exist for this vulnerability.
Související produkty
seznam CVE
- CVE-2021-23975 high
- CVE-2021-23970 high
- CVE-2021-23972 critical
- CVE-2021-23973 high
- CVE-2021-23978 critical
- CVE-2021-23971 high
- CVE-2021-23968 warning
- CVE-2021-23969 warning
- CVE-2021-23976 critical
- CVE-2021-23979 critical
- CVE-2021-23977 high
- CVE-2021-23974 high
Zobrazit více
Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com
Našli jste v popisu této chyby zabezpečení nepřesnost? Dej nám vědět!