CVE-2021-23988
First published: Tue Mar 23 2021(Updated: )
Mozilla developers reported memory safety bugs present in Firefox 86. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 87.
Credit: security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Firefox | <87 | 87 |
| Mozilla Firefox | <87.0 | |
| <87 | 87 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID for this Firefox vulnerability?
The vulnerability ID for this Firefox vulnerability is CVE-2021-23988.
Who reported the memory safety bugs in Firefox?
The memory safety bugs in Firefox were reported by Mozilla developers Tyson Smith and Christian Holler.
What is the severity of CVE-2021-23988?
The severity of CVE-2021-23988 is medium with a severity value of 4.
What is the affected software for CVE-2021-23988?
The affected software for CVE-2021-23988 is Mozilla Firefox version up to exclusive 87.
How can I fix the vulnerability in Firefox?
To fix the vulnerability in Firefox, update to version 87 or higher.
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/references
- agent/weakness
- agent/author
- agent/severity
- agent/event
- collector/mozilla-advisory
- agent/software-canonical-lookup-request
- source/Mozilla
- agent/software-canonical-lookup
- agent/tags
- agent/description
- collector/nvd-index
- collector/mitre-cve
- source/MITRE
- vendor/mozilla
- canonical/mozilla firefox