CVE-2021-43533
First published: Tue Nov 02 2021(Updated: )
When parsing internationalized domain names, high bits of the characters in the URLs were sometimes stripped, resulting in inconsistencies that could lead to user confusion or attacks such as phishing.
Credit: security@mozilla.org security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Firefox | <94 | 94 |
| Mozilla Firefox | <94.0 | |
| <94.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is CVE-2021-43533?
CVE-2021-43533 is a vulnerability that affects Firefox versions before 94.
How does CVE-2021-43533 affect Firefox?
CVE-2021-43533 affects Firefox versions before 94 by causing inconsistencies in the parsing of internationalized domain names, which can lead to user confusion or phishing attacks.
What is the severity of CVE-2021-43533?
The severity of CVE-2021-43533 is medium with a CVSS score of 4.3.
How can I fix CVE-2021-43533?
To fix CVE-2021-43533, update your Firefox browser to version 94 or above.
Where can I find more information about CVE-2021-43533?
For more information about CVE-2021-43533, you can refer to the following sources: [Mozilla Bugzilla](https://bugzilla.mozilla.org/show_bug.cgi?id=1724233), [Mozilla Security Advisories](https://www.mozilla.org/en-US/security/advisories/mfsa2021-48/)
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/references
- agent/severity
- agent/author
- collector/mozilla-advisory
- agent/software-canonical-lookup-request
- agent/description
- source/Mozilla
- agent/software-canonical-lookup
- collector/nvd-index
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/nvd-api
- source/NVD
- vendor/mozilla
- canonical/mozilla firefox