Receiving a malicious URL as text through a SEND intent could have led to XSS - CVE-2021-43544| ID: oval:org.secpod.oval:def:76257 | Date: (C)2021-12-08 (M)2023-11-19 |
| Class: VULNERABILITY | Family: macos |
Mozilla Firefox 95, Mozilla Firefox ESR 91.4 : When receiving a URL through a SEND intent, Firefox would have searched for the text, but subsequent usages of the address bar might have caused the URL to load unintentionally, which could lead to XSS and spoofing attacks.
| Platform: |
| Apple Mac OS 14 |
| Apple Mac OS 13 |
| Apple Mac OS X 10.9 |
| Apple Mac OS X 10.10 |
| Apple Mac OS X 10.11 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.15 |
| Apple Mac OS 11 |
| Apple Mac OS 12 |
| Product: |
| Mozilla Firefox |
| Mozilla Firefox ESR |
