Back to search
CVE-2021-29965
Published: Jun 24, 2021
Modified: Aug 3, 2024
PUBLISHED
Description
A malicious website that causes an HTTP Authentication dialog to be spawned could trick the built-in password manager to suggest passwords for the currently active website instead of the website that triggered the dialog. *This bug only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 89.
| Vendor | Product | Versions |
|---|---|---|
Mozilla | Firefox | affected unspecified - < 89 |
References
https://www.mozilla.org/security/advisories/mfsa2021-23/
x_refsource_MISC
https://bugzilla.mozilla.org/show_bug.cgi?id=1709257
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now