CVE-2021-29961

Summary

When styling and rendering an oversized &lt;select&gt; element, Firefox did not apply correct clipping which allowed an attacker to paint over the user interface. This vulnerability affects Firefox < 89.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 89affected

Weaknesses

  • Firefox UI spoof using &lt;select&gt; elements and CSS scaling

ADP Enrichment

CVE Program Container

Additional References

References