Medium severity5.3NVD Advisory· Published Jun 24, 2021· Updated Jun 17, 2026
CVE-2021-29955
CVE-2021-29955
Description
A transient execution vulnerability, named Floating Point Value Injection (FPVI) allowed an attacker to leak arbitrary memory addresses and may have also enabled JIT type confusion attacks. (A related vulnerability, Speculative Code Store Bypass (SCSB), did not affect Firefox.). This vulnerability affects Firefox ESR < 78.9 and Firefox < 87.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4<78.9+ 3 more
- (no CPE)range: <78.9
- (no CPE)range: <87
- (no CPE)range: unspecified
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
3- bugzilla.mozilla.org/show_bug.cginvdPermissions RequiredVendor Advisory
- www.mozilla.org/security/advisories/mfsa2021-10/nvdRelease NotesVendor Advisory
- www.mozilla.org/security/advisories/mfsa2021-11/nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.