[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

254202

 
 

909

 
 

198060

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

WebExtensions could have installed persistent ServiceWorkers - CVE-2021-43540

ID: oval:org.secpod.oval:def:76253Date: (C)2021-12-08   (M)2023-11-19
Class: VULNERABILITYFamily: macos




Mozilla Firefox 95, Mozilla Firefox ESR 91.4 : WebExtensions with the correct permissions were able to create and install ServiceWorkers for third-party websites that would not have been uninstalled with the extension.

Platform:
Apple Mac OS 14
Apple Mac OS 13
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Apple Mac OS X 10.13
Apple Mac OS X 10.14
Apple Mac OS X 10.15
Apple Mac OS 11
Apple Mac OS 12
Product:
Mozilla Firefox
Mozilla Firefox ESR
Reference:
CVE-2021-43540
CVE    1
CVE-2021-43540

© SecPod Technologies