Vulnerability identifier: #VU48471
Vulnerability risk: Low
Exploitation vector: Network
Exploit availability: No
The vulnerability allows a remote attacker to introduce an unexpected behavior.
The vulnerability exists due to improper management of internal resources within Mutation Observers. When listening for page changes with a Mutation Observer, a malicious web page could confuse Firefox Screenshots into interacting with elements other than those that it injected into the page. This would lead to internal errors and unexpected behavior in the Screenshots code.
Install updates from vendor's website.
Vulnerable software versions
Mozilla Firefox: 80.0 - 82.0.3
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?