CVE-2021-23982

Summary

Using techniques that built on the slipstream research, a malicious webpage could have scanned both an internal network's hosts as well as services running on the user's local machine utilizing WebRTC connections. This vulnerability affects Firefox ESR < 78.9, Firefox < 87, and Thunderbird < 78.9.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefox ESRunspecified < 78.9affected
MozillaFirefoxunspecified < 87affected
MozillaThunderbirdunspecified < 78.9affected

Weaknesses

  • Internal network hosts could have been probed by a malicious webpage

ADP Enrichment

CVE Program Container

Additional References

References