Lucene search
MozillaCVELIST:CVE-2021-23985HistoryMar 31, 2021 - 1:41 p.m.
CVE-2021-23985
2021-03-3113:41:20
mozilla
www.cve.org
1
If an attacker is able to alter specific about:config values (for example malware running on the user’s computer), the Devtools remote debugging feature could have been enabled in a way that was unnoticable to the user. This would have allowed a remote attacker (able to make a direct network connection to the victim) to monitor the user’s browsing activity and (plaintext) network traffic. This was addressed by providing a visual cue when Devtools has an open network socket. This vulnerability affects Firefox < 87.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "87",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
debiancve
debiancve
CVE-2021-23985
2021-03-31 14:15:19
veracode
veracode
Information Disclosure
2021-03-25 01:22:42
nvd
nvd
CVE-2021-23985
2021-03-31 14:15:19
alpinelinux
alpinelinux
CVE-2021-23985
2021-03-31 14:15:19
prion
prion
Design/Logic Flaw
2021-03-31 14:15:00
cve
cve
CVE-2021-23985
2021-03-31 14:15:19
ubuntucve
ubuntucve
CVE-2021-23985
2021-03-25 00:00:00
nessus
nessus
Mozilla Firefox < 87.0
2021-03-23 00:00:00
Mozilla Firefox < 87.0
2021-03-23 00:00:00
osv
osv
firefox vulnerabilities
2021-03-25 22:36:31
openvas
openvas
Ubuntu: Security Advisory (USN-4893-1)
2021-03-26 00:00:00
Mozilla Firefox Security Advisory (MFSA2021-10) - Windows
2021-03-26 00:00:00
Mozilla Firefox Security Advisory (MFSA2021-10) - Windows
2022-05-10 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2021-03-25 00:00:00
kaspersky
kaspersky
KLA12127 Multiple vulnerabilities in Mozilla Firefox
2021-03-23 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 87 — Mozilla
2021-03-23 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2021-04-30 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1835
2021-07-02 16:43:38