CVE-2021-23974 Vulnerability Details

/ / /

CVE-2021-23974 Metadata Quick Info

CVE Published: 26/02/2021 | CVE Updated: 03/08/2024 | CVE Year: 2021
Source: mozilla | Vendor: Mozilla | Product: Firefox
Status : PUBLISHED

CVE-2021-23974 Description

The DOMParser API did not properly process \'

MetricsCVSS Version: 3.1Base Score: n/a Vector: n/al➤ Exploitability Metrics:
Attack Vector (AV)*
Attack Complexity (AC)*
Privileges Required (PR)*
User Interaction (UI)*
Scope (S)*

l➤ Impact Metrics:
Confidentiality Impact (C)*
Integrity Impact (I)*
Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: noscript elements could have led to an HTML Sanitizer bypass
Source: Mozilla

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:

Source: NVD (National Vulnerability Database).

Last added CVEs
▸ CVE-2024-9999 ◂ Discovered: 12/11/2024 Status: PUBLISHED	▸ CVE-2024-9997 ◂ Discovered: 29/10/2024 Status: PUBLISHED	▸ CVE-2024-9996 ◂ Discovered: 29/10/2024 Status: PUBLISHED

Tags:
CVE-2021-23974 Vulnerability Details