Mozilla Firefox is an open source Web browser from the Mozilla Foundation in the U.S. A permission permission and access control issue vulnerability exists in Mozilla Firefox, which stems from the way Firefox handles extension updates. An attacker could use the vulnerability to trick victims into installing a specific type of browser extension and bypass the prompt to grant permission for new requests for new versions during automatic updates.
CPE | Name | Operator | Version |
---|---|---|---|
mozilla firefox | lt | 97.0 | |
mozilla firefox esr | lt | 91.6 | |
mozilla thunderbird | lt | 91.6 |