CVE-2021-23969 : As specified in the W3C Content Security Policy draft, when creating a violation

As specified in the W3C Content Security Policy draft, when creating a violation report, "User agents need to ensure that the source file is the URL requested by the page, pre-redirects. If that’s not possible, user agents need to strip the URL down to an origin to avoid unintentional leakage." Under certain types of redirects, Firefox incorrectly set the source file to be the destination of the redirects. This was fixed to be the redirect destination's origin. This vulnerability affects Firefox < 86, Thunderbird < 78.8, and Firefox ESR < 78.8.

Published 2021-02-26 02:15:13

Updated 2022-05-27 18:17:00

Source Mozilla Corporation

View at NVD, CVE.org

Products affected by CVE-2021-23969

Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox
Versions before (<) 86.0
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
Matching versions
Mozilla » Thunderbird
Versions before (<) 78.8
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Esr
Versions before (<) 78.8
cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2021-23969

EPSS FAQ

0.32%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 70 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2021-23969

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:P/I:N/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
4.3	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N	2.8	1.4	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: Low Integrity: None Availability: None

References for CVE-2021-23969

https://www.mozilla.org/security/advisories/mfsa2021-08/

Security Vulnerabilities fixed in Firefox ESR 78.8 — Mozilla
Release Notes;Vendor Advisory

CVEs referencing this url
https://www.mozilla.org/security/advisories/mfsa2021-09/

Security Vulnerabilities fixed in Thunderbird 78.8 — Mozilla
Release Notes;Vendor Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/202104-10

Mozilla Firefox: Multiple vulnerabilities (GLSA 202104-10) — Gentoo security
Third Party Advisory

CVEs referencing this url
https://www.mozilla.org/security/advisories/mfsa2021-07/

Security Vulnerabilities fixed in Firefox 86 — Mozilla
Release Notes;Vendor Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/202104-09

Mozilla Thunderbird: Multiple vulnerabilities (GLSA 202104-09) — Gentoo security
Third Party Advisory

CVEs referencing this url
https://bugzilla.mozilla.org/show_bug.cgi?id=1542194

Access Denied
Issue Tracking;Permissions Required;Vendor Advisory
https://lists.debian.org/debian-lts-announce/2021/03/msg00000.html

[SECURITY] [DLA 2578-1] thunderbird security update
Mailing List;Third Party Advisory

CVEs referencing this url
https://www.debian.org/security/2021/dsa-4866

Debian -- Security Information -- DSA-4866-1 thunderbird
Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2021-23969

Products affected by CVE-2021-23969

Exploit prediction scoring system (EPSS) score for CVE-2021-23969

CVSS scores for CVE-2021-23969

References for CVE-2021-23969