Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network’s hosts as well as services running on the user’s local machine. This vulnerability affects Firefox < 85.

CPENameOperatorVersion
debian_linuxeq9.0
debian_linuxeq10.0
firefoxlt85.0

Name	Operator	Version
debian_linux	eq	9.0
debian_linux	eq	10.0
firefox	lt	85.0

References

bugzilla.mozilla.org/show_bug.cgi?id=1677940

lists.debian.org/debian-lts-announce/2021/04/msg00019.html

lists.debian.org/debian-lts-announce/2021/04/msg00020.html

security.gentoo.org/glsa/202104-09

security.gentoo.org/glsa/202104-10

www.debian.org/security/2021/dsa-4895

www.debian.org/security/2021/dsa-4897

www.mozilla.org/security/advisories/mfsa2021-03/

cvelist 1

nvd 1

redhatcve 1

ubuntucve 1

cve 1

alpinelinux 1

veracode 1

debiancve 1

threatpost 1

thn 1

openvas 20

redhat 8

nessus 41

suse 2

oraclelinux 4

altlinux 2

archlinux 2

osv 7

debian 4

mageia 2

almalinux 2

kaspersky 3

mozilla 3

redos 7

ubuntu 3

gentoo 3

amazon 1

ibm 1

rosalinux 1

cvelist

CVE-2021-23961

2021-02-26 02:02:52

nvd

CVE-2021-23961

2021-02-26 03:15:13

redhatcve

CVE-2021-23961

2021-04-20 03:20:46

ubuntucve

CVE-2021-23961

2021-01-26 00:00:00

cve

CVE-2021-23961

2021-02-26 03:15:13

alpinelinux

CVE-2021-23961

2021-02-26 03:15:13

veracode

Information Disclosure

2021-01-27 19:32:17

debiancve

CVE-2021-23961

2021-02-26 03:15:13

threatpost

Remote Attackers Can Now Reach Protected Network Devices via NAT Slipstreaming

2021-01-27 20:32:55

thn

New Attack Could Let Remote Hackers Target Devices On Internal Networks

2021-01-27 12:58:00

openvas

Mozilla Firefox ESR Security Advisories (MFSA2021-13, MFSA2021-16) - Windows

2021-04-20 00:00:00

Mozilla Firefox ESR Security Advisories (MFSA2021-13, MFSA2021-16) - Mac OS X

2021-04-20 00:00:00

Mageia: Security Advisory (MGASA-2021-0199)

2022-01-28 00:00:00

redhat

(RHSA-2021:1363) Important: firefox security update

2021-04-26 10:29:25

(RHSA-2021:1350) Important: thunderbird security update

2021-04-26 05:03:28

(RHSA-2021:1361) Important: firefox security update

2021-04-26 10:29:12

nessus

RHEL 8 : firefox (RHSA-2021:1361)

2021-04-26 00:00:00

SUSE SLES15 Security Update : MozillaFirefox (SUSE-SU-2021:1433-1)

2021-04-30 00:00:00

Oracle Linux 7 : firefox (ELSA-2021-1363)

2021-04-27 00:00:00

suse

Security update for MozillaFirefox (important)

2021-04-26 00:00:00

Security update for MozillaThunderbird (important)

2021-05-01 00:00:00

oraclelinux

firefox security update

2021-04-27 00:00:00

firefox security update

2021-04-27 00:00:00

thunderbird security update

2021-04-27 00:00:00

altlinux

Security fix for the ALT Linux 10 package firefox-esr version 78.10.0-alt1

2021-04-21 00:00:00

Security fix for the ALT Linux 10 package thunderbird version 78.10.0-alt1

2021-04-26 00:00:00

archlinux

[ASA-202104-4] thunderbird: multiple issues

2021-04-29 00:00:00

[ASA-202102-1] firefox: multiple issues

2021-02-01 00:00:00

osv

firefox-esr - security update

2021-04-23 00:00:00

firefox-esr - security update

2021-04-20 00:00:00

firefox vulnerabilities

2021-02-01 23:24:03

debian

[SECURITY] [DSA 4895-1] firefox-esr security update

2021-04-20 18:17:37

[SECURITY] [DLA 2633-1] firefox-esr security update

2021-04-23 10:43:12

[SECURITY] [DSA 4897-1] thunderbird security update

2021-04-22 09:31:32

mageia

Updated firefox packages fix security vulnerabilities

2021-04-29 12:41:35

Updated thunderbird packages fix security vulnerabilities

2021-04-29 12:41:35

almalinux

Important: firefox security update

2021-04-26 10:29:07

Important: thunderbird security update

2021-04-26 05:03:41

kaspersky

KLA12150 Multiple vulnerabilities in Mozilla Firefox ESR

2021-04-19 00:00:00

KLA12148 Multiple vulnerabilities in Mozilla Thunderbird

2021-04-19 00:00:00

KLA12050 Multiple vulnerabilities in Mozilla Firefox

2021-01-26 00:00:00

mozilla

Security Vulnerabilities fixed in Firefox ESR 78.10 — Mozilla

2021-04-19 00:00:00

Security Vulnerabilities fixed in Thunderbird 78.10 — Mozilla

2021-04-19 00:00:00

Security Vulnerabilities fixed in Firefox 85 — Mozilla

2021-01-26 00:00:00

redos

ROS-2-515

2021-09-08 00:00:00

ROS-2-463

2021-09-08 00:00:00

ROS-2-820

2021-09-08 00:00:00

ubuntu

Firefox vulnerabilities

2021-02-01 00:00:00

Thunderbird vulnerabilities

2021-06-25 00:00:00

Thunderbird vulnerabilities

2021-06-22 00:00:00

gentoo

Mozilla Firefox: Multiple vulnerabilities

2021-02-01 00:00:00

Mozilla Thunderbird: Multiple vulnerabilities

2021-04-30 00:00:00

Mozilla Firefox: Multiple vulnerabilities

2021-04-30 00:00:00

amazon

Important: thunderbird

2021-05-20 17:05:00

ibm

Security Bulletin: Multiple vulnerabilities in Mozilla Firefox affect IBM Cloud Pak for Multicloud Management Monitoring

2021-05-18 11:41:03

rosalinux

Advisory ROSA-SA-2021-1835

2021-07-02 16:43:38

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.1 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.4%

JSON

Related for PRION:CVE-2021-23961