Published: 08/12/2021 Updated: 12/07/2022

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.*Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.*. This vulnerability affects Firefox < 94, Thunderbird < 91.3, and Firefox ESR < 91.3.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox_esr
mozilla thunderbird
mozilla firefox

The executable file warning was not presented when downloading inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer Note: This issue only affected Mac OS operating systems Other operating systems are unaffected ...

Mozilla Foundation Security Advisory 2021-49 Security Vulnerabilities fixed in Firefox ESR 913 Announced November 2, 2021 Impact high Products Firefox ESR Fixed in Firefox ESR 913 ...

Mozilla Foundation Security Advisory 2021-50 Security Vulnerabilities fixed in Thunderbird 913 Announced November 3, 2021 Impact high Products Thunderbird Fixed in Thunderbird 913 ...

Mozilla Foundation Security Advisory 2021-48 Security Vulnerabilities fixed in Firefox 94 Announced November 2, 2021 Impact high Products Firefox Fixed in Firefox 94 ...

NVD-CWE-noinfo https://www.mozilla.org/security/advisories/mfsa2021-50/https://www.mozilla.org/security/advisories/mfsa2021-49/https://www.mozilla.org/security/advisories/mfsa2021-48/https://bugzilla.mozilla.org/show_bug.cgi?id=1731779 https://nvd.nist.gov https://security.archlinux.org/CVE-2021-38510 https://www.mozilla.org/en-US/security/advisories/mfsa2021-49/

CVE-2021-38510

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect