Mozilla Firefox Esr : Security vulnerabilities, CVEs published in 2021

CVE-2021-38503

The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or navigating the top-level frame. This vulnerability affects Firefox < 94, Thunderbird < 91.3, and Firefox ESR < 91.3.

Max CVSS

10.0

EPSS Score

0.70%

Published

2021-12-08

Updated

2022-12-09

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Mozilla » Firefox Esr : Security Vulnerabilities, CVEs, Published In 2021 CVSS score >= 9

CVE-2021-38503