PT-2021-2599 · Mozilla+7 · Firefox+7

Ben Seri

+2

·

Published

2021-01-26

·

Updated

2024-12-12

·

CVE-2021-23961

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:C/I:N/A:N
Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions prior to 85
Description The issue is related to information disclosure. It could allow a remote attacker to gain unauthorized access to protected information. Combining certain techniques with a malicious webpage may expose hosts on an internal network and services running on the user's local machine.
Recommendations For versions prior to 85, update to version 85 or later to resolve the issue. As a temporary workaround, consider avoiding the use of potentially vulnerable features until the update is applied. Restrict access to untrusted webpages to minimize the risk of exploitation.

Exploit

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

ALT-PU-2021-1162
ALT-PU-2021-1687
ALT-PU-2021-1701
ALT-PU-2021-1718
ALT-PU-2021-1804
ALT-PU-2021-1886
ALT-PU-2021-1892
ALT-PU-2021-2725
ALT-PU-2021-2881
ALT-PU-2021-3368
ALT-PU-2021-3369
ALT-PU-2022-1781
ALT-PU-2022-1782
BDU:2021-02082
CESA-2021_1353
CESA-2021_1360
CVE-2021-23961
DLA-2632-1
DLA-2633-1
DSA-4895-1
DSA-4897-1
MGASA-2021-0198
MGASA-2021-0199
OESA-2023-1673
OESA-2023-1674
OPENSUSE-SU-2021:0621-1
OPENSUSE-SU-2021:0644-1
OPENSUSE-SU-2021_0621-1
OPENSUSE-SU-2021_0644-1
OPENSUSE-SU-2024:10600-1
OPENSUSE-SU-2024:10601-1
OPENSUSE-SU-2024:14572-1
RHSA-2021:1350
RHSA-2021:1351
RHSA-2021:1352
RHSA-2021:1353
RHSA-2021:1360
RHSA-2021:1361
RHSA-2021:1362
RHSA-2021:1363
RHSA-2021_1350
RHSA-2021_1353
RHSA-2021_1360
RHSA-2021_1363
SUSE-SU-2021:1307-1
SUSE-SU-2021:1325-1
SUSE-SU-2021:1432-1
SUSE-SU-2021:1433-1
SUSE-SU-2021:14708-1
SUSE-SU-2021_1307-1
SUSE-SU-2021_1325-1
SUSE-SU-2021_1433-1
SUSE-SU-2021_14708-1
USN-4717-1
USN-4717-2
USN-4995-1
USN-4995-2

Affected Products

Alt Linux
Astra Linux
Centos
Linuxmint
Firefox
Red Hat
Suse
Ubuntu