Lucene search

CVE-2021-38503

🗓️ 08 Dec 2021 22:08:15Reported by mozillaType

CVE-2021-38503: Iframe sandbox rules not applied to XSLT stylesheet

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 156
Cvelist	CVE-2021-38503	8 Dec 202121:22	–	cvelist
RedhatCVE	CVE-2021-38503	3 Nov 202101:14	–	redhatcve
NVD	CVE-2021-38503	8 Dec 202122:15	–	nvd
OSV	CVE-2021-38503	8 Dec 202122:15	–	osv
OSV	UBUNTU-CVE-2021-38503	3 Nov 202100:00	–	osv
OSV	ALSA-2021:4123 Important: firefox security update	3 Nov 202119:23	–	osv
OSV	USN-5131-1 firefox vulnerabilities	3 Nov 202120:09	–	osv
OSV	ALSA-2021:4130 Important: thunderbird security update	4 Nov 202116:03	–	osv
OSV	MGASA-2021-0506 Updated thunderbird packages fix security vulnerabilities	10 Nov 202122:53	–	osv
OSV	RHSA-2021:4123 Red Hat Security Advisory: firefox security update	16 Sep 202406:46	–	osv

Nvd

Vulners

Node

mozilla firefoxRange<94.0

mozilla firefox_esrRange<91.3

mozilla thunderbirdRange<91.3

Node

debian debian_linuxMatch9.0

debian debian_linuxMatch10.0

debian debian_linuxMatch11.0

[
  {
    "product": "Firefox",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "94",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Thunderbird",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "91.3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Firefox ESR",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "91.3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
security	www.security.gentoo.org/glsa/202202-03
mozilla	www.mozilla.org/security/advisories/mfsa2021-49/
debian	www.debian.org/security/2021/dsa-5026
lists	www.lists.debian.org/debian-lts-announce/2021/12/msg00030.html
mozilla	www.mozilla.org/security/advisories/mfsa2021-48/
mozilla	www.mozilla.org/security/advisories/mfsa2021-50/
lists	www.lists.debian.org/debian-lts-announce/2022/01/msg00001.html
bugzilla	www.bugzilla.mozilla.org/show_bug.cgi
debian	www.debian.org/security/2022/dsa-5034
security	www.security.gentoo.org/glsa/202208-14

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Dec 2021 22:15Current

8.9High risk

Vulners AI Score8.9

CVSS27.5

CVSS310

EPSS0.01026

CWE-863