CVE-2021-29975
Published: 05 August 2021
Summary
CVE-2021-29975 is a medium-severity an unspecified weakness vulnerability in Mozilla Firefox. Its CVSS base score is 6.5 (Medium).
Operationally, ranked at the 49.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2021-16434
Vulnerability details
Through a series of DOM manipulations, a message, over which the attacker had control of the text but not HTML or formatting, could be overlaid on top of another domain (with the new domain correctly shown in the address bar)…
more
resulting in possible user confusion. This vulnerability affects Firefox < 90.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.