CVE-2021-23976 – When accepting a malicious intent from other installed apps, Firefox for Android accepted …

26 February 2021

Vuln ID: CVE-2021-23976

Published: 2021-02-26 02:15:13Z

Description: When accepting a malicious intent from other installed apps, Firefox for Android accepted manifests from arbitrary file paths and allowed declaring webapp manifests for other origins. This could be used to gain fullscreen access for UI spoofing and could also lead to cross-origin attacks on targeted websites. Note: This issue is a different issue from CVE-2020-26954 and only affected Firefox for Android. Other operating systems are unaffected. This vulnerability affects Firefox < 86.

Source: NVD.NIST.GOV

Date:

26 February 2021

Categorie(s):

NVD

Tag(s):

NVD

Hackers make millions of attempts to exploit WordPress plugin vulnerability26 April 2024
Cybersecurity provider Darktrace to be acquired by Thoma Bravo for $5.3B26 April 2024
BeyondTrust Report: Microsoft Security Vulnerabilities Decreased by 5% in 202326 April 2024
Kaiser Permanente shared 13.4M people’s data with Microsoft Bing, Google, others26 April 2024
Discover How DeepL Write Pro Enhances Accuracy and Security26 April 2024