PT-2021-4031 · Mozilla+8 · Firefox Esr+10
Gabriele Svelto
+1
·
Published
2021-08-26
·
Updated
2024-12-12
·
CVE-2021-38493
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Firefox versions 91 and earlier
Firefox ESR versions 78.13 and earlier
Thunderbird versions 78.13 and earlier
Description
The issue is related to memory safety bugs, which can lead to memory corruption. With sufficient effort, these bugs could potentially be exploited to run arbitrary code. The vulnerability is also described as a buffer overflow in memory, which could allow a remote attacker to execute arbitrary code.
Recommendations
For Firefox versions 91 and earlier, update to version 92 or later.
For Firefox ESR versions 78.13 and earlier, update to version 78.14 or later.
For Thunderbird versions 78.13 and earlier, update to version 78.14 or later.
Exploit
Fix
Buffer Overflow
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Centos
Firefox
Firefox Esr
Linuxmint
Red Hat
Rocky Linux
Suse
Thunderbird
Ubuntu