Access Control Bypass

2021-07-1421:03:23

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

41.8%

JSON

firefox is vulnerable to access control bypass. A remote attacker is able to bypass security restrictions as a result of enabling of network partitioning. By persuading a victim to visit a malicious web site, the error on a domain can be overridden which had specified HTTP Strict Transport Security.

CPENameOperatorVersion
firefox:edgeeq89.0.1-r0
firefox:edgeeq87.0-r0
firefox:edgeeq76.0.1-r0
firefox:edgeeq75.0-r2
firefox:edgeeq76.0.1-r1
firefox:edgeeq75.0-r1
firefox:edgeeq76.0-r0
firefox:edgeeq89.0.1-r1
firefox:edgeeq74.0-r1
firefox:edgeeq89.0.2-r0

Name	Operator	Version
firefox:edge	eq	89.0.1-r0
firefox:edge	eq	87.0-r0
firefox:edge	eq	76.0.1-r0
firefox:edge	eq	75.0-r2
firefox:edge	eq	76.0.1-r1
firefox:edge	eq	75.0-r1
firefox:edge	eq	76.0-r0
firefox:edge	eq	89.0.1-r1
firefox:edge	eq	74.0-r1
firefox:edge	eq	89.0.2-r0