CVE-2021-23995
N/A
N/A
Summary
When Responsive Design Mode was enabled, it used references to objects that were previously freed. We presume that with enough effort this could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Mozilla | Firefox ESR | unspecified < 78.10 | affected |
| Mozilla | Thunderbird | unspecified < 78.10 | affected |
| Mozilla | Firefox | unspecified < 88 | affected |
Weaknesses
- Use-after-free in Responsive Design Mode
ADP Enrichment
CVE Program Container
Additional References
- https://www.mozilla.org/security/advisories/mfsa2021-14/
- https://www.mozilla.org/security/advisories/mfsa2021-16/
- https://www.mozilla.org/security/advisories/mfsa2021-15/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1699835
References
- https://www.mozilla.org/security/advisories/mfsa2021-14/
- https://www.mozilla.org/security/advisories/mfsa2021-16/
- https://www.mozilla.org/security/advisories/mfsa2021-15/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1699835
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.