CVE-2021-43538
CVSS v3.1
4.3 (Medium)
CVSS v2.0
4.3 (Medium)
EPSS
0.49 % (77th)
Affected Products
4
Advisories
31
By misusing a race in our notification code, an attacker could have forcefully hidden the notification for pages that had received full screen and pointer lock access, which could have been used for spoofing attacks. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95.
Weaknesses
- CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2021-12-08 22:15:09
(2 years ago) - Updated Date
-
2022-12-09 15:55:13
(21 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...