CVE-2021-29970

Summary

A malicious webpage could have triggered a use-after-free, memory corruption, and a potentially exploitable crash. This bug could only be triggered when accessibility was enabled.. This vulnerability affects Thunderbird < 78.12, Firefox ESR < 78.12, and Firefox < 90.

Affected Software

VendorProductVersion RangeStatus
MozillaThunderbirdunspecified < 78.12affected
MozillaFirefox ESRunspecified < 78.12affected
MozillaFirefoxunspecified < 90affected

Weaknesses

  • Use-after-free in accessibility features of a document

ADP Enrichment

CVE Program Container

Additional References

References