Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.

CPENameOperatorVersion
firefoxlt88.0
firefox_esrlt78.10
thunderbirdlt78.10

Name	Operator	Version
firefox	lt	88.0
firefox_esr	lt	78.10
thunderbird	lt	78.10

References

bugzilla.mozilla.org/show_bug.cgi?id=1667456

www.mozilla.org/security/advisories/mfsa2021-14/

www.mozilla.org/security/advisories/mfsa2021-15/

www.mozilla.org/security/advisories/mfsa2021-16/

redhatcve 1

veracode 1

nvd 1

cvelist 1

alpinelinux 1

cve 1

debiancve 1

ubuntucve 1

threatpost 1

ibm 2

openvas 20

nessus 40

mageia 2

osv 7

oraclelinux 4

debian 4

archlinux 2

suse 2

altlinux 2

redhat 8

kaspersky 3

mozilla 3

almalinux 2

redos 13

amazon 1

ubuntu 3

gentoo 2

redhatcve

CVE-2021-23998

2021-04-20 03:20:52

veracode

Spoofable Secure Lock Icon

2021-04-21 18:13:47

nvd

CVE-2021-23998

2021-06-24 14:15:09

cvelist

CVE-2021-23998

2021-06-24 13:25:26

alpinelinux

CVE-2021-23998

2021-06-24 14:15:09

cve

CVE-2021-23998

2021-06-24 14:15:09

debiancve

CVE-2021-23998

2021-06-24 14:15:09

ubuntucve

CVE-2021-23998

2021-04-19 00:00:00

threatpost

Mozilla Fixes Firefox Flaw That Allowed Spoofing of HTTPS Browser Padlock

2021-04-20 20:40:09

ibm

Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring has applied security fixes for its use of Mozilla Firefox

2021-12-01 15:06:50

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 78.14.0 ESR + CVE-2021-29967) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF14

2021-09-28 16:45:14

openvas

Mozilla Firefox ESR Security Advisories (MFSA2021-13, MFSA2021-16) - Mac OS X

2021-04-20 00:00:00

Mozilla Firefox ESR Security Advisories (MFSA2021-13, MFSA2021-16) - Windows

2021-04-20 00:00:00

Mageia: Security Advisory (MGASA-2021-0199)

2022-01-28 00:00:00

nessus

Debian DLA-2633-1 : firefox-esr security update

2021-04-27 00:00:00

RHEL 8 : firefox (RHSA-2021:1360)

2021-04-26 00:00:00

Mozilla Firefox ESR < 78.10

2021-04-19 00:00:00

mageia

Updated firefox packages fix security vulnerabilities

2021-04-29 12:41:35

Updated thunderbird packages fix security vulnerabilities

2021-04-29 12:41:35

osv

firefox-esr - security update

2021-04-20 00:00:00

firefox-esr - security update

2021-04-23 00:00:00

firefox vulnerabilities

2021-04-26 10:44:42

oraclelinux

firefox security update

2021-04-27 00:00:00

firefox security update

2021-04-27 00:00:00

thunderbird security update

2021-04-27 00:00:00

debian

[SECURITY] [DSA 4895-1] firefox-esr security update

2021-04-20 18:17:37

[SECURITY] [DLA 2633-1] firefox-esr security update

2021-04-23 10:43:12

[SECURITY] [DSA 4897-1] thunderbird security update

2021-04-22 09:31:32

archlinux

[ASA-202104-4] thunderbird: multiple issues

2021-04-29 00:00:00

[ASA-202104-3] firefox: multiple issues

2021-04-29 00:00:00

suse

Security update for MozillaFirefox (important)

2021-04-26 00:00:00

Security update for MozillaThunderbird (important)

2021-05-01 00:00:00

altlinux

Security fix for the ALT Linux 10 package firefox-esr version 78.10.0-alt1

2021-04-21 00:00:00

Security fix for the ALT Linux 10 package thunderbird version 78.10.0-alt1

2021-04-26 00:00:00

redhat

(RHSA-2021:1363) Important: firefox security update

2021-04-26 10:29:25

(RHSA-2021:1360) Important: firefox security update

2021-04-26 10:29:07

(RHSA-2021:1361) Important: firefox security update

2021-04-26 10:29:12

kaspersky

KLA12150 Multiple vulnerabilities in Mozilla Firefox ESR

2021-04-19 00:00:00

KLA12148 Multiple vulnerabilities in Mozilla Thunderbird

2021-04-19 00:00:00

KLA12149 Multiple vulnerabilities in Mozilla Firefox

2021-04-19 00:00:00

mozilla

Security Vulnerabilities fixed in Firefox ESR 78.10 — Mozilla

2021-04-19 00:00:00

Security Vulnerabilities fixed in Thunderbird 78.10 — Mozilla

2021-04-19 00:00:00

Security Vulnerabilities fixed in Firefox 88 — Mozilla

2021-04-19 00:00:00

almalinux

Important: firefox security update

2021-04-26 10:29:07

Important: thunderbird security update

2021-04-26 05:03:41

redos

ROS-2-463

2021-09-08 00:00:00

ROS-2-903

2021-09-08 00:00:00

ROS-2-515

2021-09-08 00:00:00

amazon

Important: thunderbird

2021-05-20 17:05:00

ubuntu

Firefox vulnerabilities

2021-04-26 00:00:00

Thunderbird vulnerabilities

2021-06-25 00:00:00

Thunderbird vulnerabilities

2021-06-22 00:00:00

gentoo

Mozilla Thunderbird: Multiple vulnerabilities

2021-04-30 00:00:00

Mozilla Firefox: Multiple vulnerabilities

2021-04-30 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.2%

JSON

Related for PRION:CVE-2021-23998