Critical severity9.8NVD Advisory· Published Jun 11, 2018· Updated Jun 17, 2026
CVE-2017-7821
CVE-2017-7821
Description
A vulnerability where WebExtensions can download and attempt to open a file of some non-executable file types. This can be triggered without specific user interaction for the file download and open actions. This could be used to trigger known vulnerabilities in the programs that handle those document types. This vulnerability affects Firefox < 56.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- osv-coords2 versionspkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweed
< 128.5.1-1.1+ 1 more
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 92.0-1.2
- Range: unspecified
Patches
Vulnerability mechanics
References
4- bugzilla.mozilla.org/show_bug.cginvdExploitIssue Tracking
- www.securityfocus.com/bid/101057nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039465nvdThird Party AdvisoryVDB Entry
- www.mozilla.org/security/advisories/mfsa2017-21/nvdVendor Advisory
News mentions
0No linked articles in our index yet.