CVE-2021-29960
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Firefox used to cache the last filename used for printing a file. When generating a filename for printing, Firefox usually suggests the web page title. The caching and suggestion techniques combined may have lead to the title of a website visited during private browsing mode being stored on disk. This vulnerability affects Firefox < 89.
Firefox solía almacenar en caché el último nombre de archivo utilizado para imprimir un archivo. Al generar un nombre de archivo para imprimir, Firefox usualmente sugiere el título de la página web. Las técnicas de caché y de sugerencia combinadas pueden haber conllevado a que el título de una página web visitada durante el modo de navegación privada se almacene en el disco. Esta vulnerabilidad afecta a Firefox versiones anteriores a 89
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-04-01 CVE Reserved
- 2021-06-03 CVE Published
- 2024-03-09 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-669: Incorrect Resource Transfer Between Spheres
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://security.gentoo.org/glsa/202107-09 | 2021-09-20 | |
| https://www.mozilla.org/security/advisories/mfsa2021-23 | 2021-09-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | >= 78.11.0 < 89.0 Search vendor "Mozilla" for product "Firefox" and version " >= 78.11.0 < 89.0" | - |
Affected
| ||||||