---

CVE-2021-38506 - log back

CVE-2021-38506 edited at 03 Nov 2021 16:44:43
Description	- Through a series of navigations, Firefox could have entered fullscreen mode without notification or warning to the user. This could lead to spoofing attacks on the browser UI including phishing. + A security issue has been found in Firefox before version 94 and Thunderbird before version 91.3. Through a series of navigations, Firefox and Thunderbird could have entered fullscreen mode without notification or warning to the user. This could lead to spoofing attacks on the browser UI including phishing.
References	https://www.mozilla.org/security/advisories/mfsa2021-48/ + https://www.mozilla.org/security/advisories/mfsa2021-50/ https://bugzilla.mozilla.org/show_bug.cgi?id=1730750

CVE-2021-38506 created at 02 Nov 2021 13:16:47
Severity	+ High
Remote	+ Remote
Type	+ Content spoofing
Description	+ Through a series of navigations, Firefox could have entered fullscreen mode without notification or warning to the user. This could lead to spoofing attacks on the browser UI including phishing.
References	+ https://www.mozilla.org/security/advisories/mfsa2021-48/ + https://bugzilla.mozilla.org/show_bug.cgi?id=1730750
Notes