Security Advisory

CVE-2021-23972

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-26 01:54:22

Last updated 2024-08-03 19:14:09

Assigner mozilla

State PUBLISHED

Description

One phishing tactic on the web is to provide a link with HTTP Auth. For example https://www.phishingtarget.com@evil.com. To mitigate this type of attack, Firefox will display a warning dialog; however, this warning dialog would not have been displayed if evil.com used a redirect that was cached by the browser. This vulnerability affects Firefox < 86.

← Browse all CVEs View on cve.org ↗