CVE-2021-43544
CVE-2021-43544
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
08 Dec 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
When receiving a URL through a SEND intent, Firefox would have searched for the text, but subsequent usages of the address bar might have caused the URL to load unintentionally, which could lead to XSS and spoofing attacks. *This bug only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 95.
Affected products
Mozilla · FirefoxWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →