CVE-2021-43536

Summary

Under certain circumstances, asynchronous functions could have caused a navigation to fail but expose the target URL. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95.

Affected Software

VendorProductVersion RangeStatus
MozillaThunderbirdunspecified < 91.4.0affected
MozillaFirefox ESRunspecified < 91.4.0affected
MozillaFirefoxunspecified < 95affected

Weaknesses

  • URL leakage when navigating while executing asynchronous function

ADP Enrichment

CVE Program Container

Additional References

References