Security Advisory

CVE-2021-38506

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-08 21:21:47

Last updated 2024-08-04 01:44:22

Assigner mozilla

State PUBLISHED

Description

Through a series of navigations, Firefox could have entered fullscreen mode without notification or warning to the user. This could lead to spoofing attacks on the browser UI including phishing. This vulnerability affects Firefox < 94, Thunderbird < 91.3, and Firefox ESR < 91.3.

← Browse all CVEs View on cve.org ↗