VYPR
Unrated severityNVD Advisory· Published Feb 26, 2021· Updated Aug 3, 2024

CVE-2021-23968

CVE-2021-23968

Description

If Content Security Policy blocked frame navigation, the full destination of a redirect served in the frame was reported in the violation report; as opposed to the original frame URI. This could be used to leak sensitive information contained in such URIs. This vulnerability affects Firefox < 86, Thunderbird < 78.8, and Firefox ESR < 78.8.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

40

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.