Описание
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code, spoof user interface, perform cross-site scripting attack.
Below is a complete list of vulnerabilities:
- A pointer operation vulnerability can be exploited to cause denial of service.
- A security bypass vulnerability can be exploited to bypass security restrictions.
- A HTTP Auth phishing vulnerability can be exploited to obtain sensitive information.
- OSI vulnerability in MediaError message property can be exploited to obtain sensitive information.
- A memory safety vulnerability can be exploited to execute arbitrary code.
- A security vulnerability in Referrer-Policy can be exploited to obtain sensitive information.
- A security bypass vulnerability in Content Security Policy violation report to obtain sensitive information.
- A security UI vulnerability in web manifests for Android can be exploited to spoof user interface.
- A time-of-check-time-of-use vulnerability in application directories on Android can be exploited to obtain sensitive information.
- A cross-site-scripting (XSS) vulnerability in the DOMParser API can be exploited to perform cross-site scripting attack.
Первичный источник обнаружения
Связанные продукты
Список CVE
- CVE-2021-23975 high
- CVE-2021-23970 high
- CVE-2021-23972 critical
- CVE-2021-23973 high
- CVE-2021-23978 critical
- CVE-2021-23971 high
- CVE-2021-23968 warning
- CVE-2021-23969 warning
- CVE-2021-23976 critical
- CVE-2021-23979 critical
- CVE-2021-23977 high
- CVE-2021-23974 high
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!