Lucene search
MozillaCVELIST:CVE-2021-43531HistoryDec 08, 2021 - 9:20 p.m.
CVE-2021-43531
2021-12-0821:20:58
mozilla
www.cve.org
5
web extension context
same-origin-violation
data leakage
firefox < 94
When a user loaded a Web Extensions context menu, the Web Extension could access the post-redirect URL of the element clicked. If the Web Extension lacked the WebRequest permission for the hosts involved in the redirect, this would be a same-origin-violation leaking data the Web Extension should have access to. This was fixed to provide the pre-redirect URL. This is related to CVE-2021-43532 but in the context of Web Extensions. This vulnerability affects Firefox < 94.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "94",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2021-12-08 22:15:00
Authentication flaw
2021-12-08 22:15:00
debiancve
debiancve
CVE-2021-43531
2021-12-08 22:15:09
CVE-2021-43532
2021-12-08 22:15:09
ubuntucve
ubuntucve
CVE-2021-43531
2021-12-08 00:00:00
CVE-2021-43532
2021-12-08 00:00:00
nvd
nvd
CVE-2021-43531
2021-12-08 22:15:09
CVE-2021-43532
2021-12-08 22:15:09
cve
cve
CVE-2021-43531
2021-12-08 22:15:09
CVE-2021-43532
2021-12-08 22:15:09
veracode
veracode
Information Disclosure
2021-12-14 19:27:40
Information Disclosure
2021-12-14 19:28:30
cnvd
cnvd
Mozilla Firefox Input Validation Error Vulnerability (CNVD-2021-99624)
2021-12-12 00:00:00
Mozilla Firefox Access Control Error Vulnerability (CNVD-2021-99623)
2021-12-12 00:00:00
cvelist
cvelist
CVE-2021-43532
2021-12-08 21:20:53
openvas
openvas
Mozilla Firefox Security Advisories (MFSA2021-48, MFSA2021-49) - Windows
2022-03-28 00:00:00
Mozilla Firefox Security Advisories (MFSA2021-48, MFSA2021-49) - Mac OS X
2022-03-28 00:00:00
kaspersky
kaspersky
KLA12335 Multiple vulnerabilities in Mozilla Firefox
2021-11-02 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 94 — Mozilla
2021-11-02 00:00:00