Severity

High

Analysis Summary

CVE-2021-23965

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by memory safety bugs within the browser engine. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using unknown attack vectors to execute arbitrary code on the vulnerable system or cause a denial of service.

Impact

Gain Access

Affected Vendors

Mozilla

Affected Products

Mozilla Firefox 84

Remediation

Update to the latest version.

https://www.mozilla.org/en-US/security/advisories/mfsa2021-03/