VYPR
Medium severity5.9NVD Advisory· Published Dec 11, 2013· Updated Jun 17, 2026

CVE-2013-6673

CVE-2013-6673

Description

Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 do not recognize a user's removal of trust from an EV X.509 certificate, which makes it easier for man-in-the-middle attackers to spoof SSL servers in opportunistic circumstances via a valid certificate that is unacceptable to the user.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

23

Patches

Vulnerability mechanics

References

21

News mentions

0

No linked articles in our index yet.