CVE-2021-24001

Summary

A compromised content process could have performed session history manipulations it should not have been able to due to testing infrastructure that was not restricted to testing-only configurations. This vulnerability affects Firefox < 88.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 88affected

Weaknesses

  • Testing code could have enabled session history manipulations by a compromised content process

ADP Enrichment

CVE Program Container

Additional References

References