Lucene search

CVE-2021-23972

🗓️ 26 Feb 2021 02:13:15Reported by mozillaType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 270 Views

One phishing tactic on the web is to provide a link with HTTP Auth. For example 'https://[email protected]'. To mitigate this type of attack, Firefox will display a warning dialog; however, this warning dialog would not have been displayed if evil.com used a redirect that was cached by the browser. This vulnerability affects Firefox < 86

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 26
NVD	CVE-2021-23972	26 Feb 202102:15	–	nvd
AlpineLinux	CVE-2021-23972	26 Feb 202102:15	–	alpinelinux
Veracode	Phishing Attack	25 Feb 202100:07	–	veracode
OSV	UBUNTU-CVE-2021-23972	26 Feb 202102:15	–	osv
OSV	USN-4756-1 firefox vulnerabilities	26 Feb 202118:11	–	osv
OSV	OPENSUSE-SU-2024:10600-1 MozillaFirefox-92.0-1.2 on GA media	15 Jun 202400:00	–	osv
OSV	OPENSUSE-SU-2024:14572-1 firefox-esr-128.5.1-1.1 on GA media	12 Dec 202400:00	–	osv
Prion	Design/Logic Flaw	26 Feb 202102:15	–	prion
Cvelist	CVE-2021-23972	26 Feb 202101:54	–	cvelist
CNVD	Unspecified Vulnerability in Mozilla Firefox (CNVD-2021-15354)	5 Mar 202100:00	–	cnvd

Nvd

Vulners

Node

mozilla firefoxRange<86.0

[
  {
    "product": "Firefox",
    "vendor": "Mozilla",
    "versions": [
      {
        "status": "affected",
        "version": "< 86"
      }
    ]
  }
]

Source	Link
mozilla	www.mozilla.org/security/advisories/mfsa2021-07/
bugzilla	www.bugzilla.mozilla.org/show_bug.cgi
security	www.security.gentoo.org/glsa/202104-10

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Feb 2021 02:15Current

7.9High risk

Vulners AI Score7.9

CVSS26.8

CVSS38.8

EPSS0.00382