Search for vulnerabilities
| Vulnerability ID | VCID-1kfj-m46a-bkd9 |
| Aliases |
CVE-2021-29965
|
| Summary | A malicious website that causes an HTTP Authentication dialog to be spawned could trick the built-in password manager to suggest passwords for the currently active website instead of the website that triggered the dialog. *This bug only affects Firefox for Android. Other operating systems are unaffected.* |
| Status | Published |
| Exploitability | 0.5 |
| Weighted Severity | 8.0 |
| Risk | 4.0 |
| Affected and Fixed Packages | Package Details |
| There are no known CWE. |
| Reference id | Reference type | URL |
|---|---|---|
| https://api.first.org/data/v1/epss?cve=CVE-2021-29965 | ||
| AVG-2019 | https://security.archlinux.org/AVG-2019 | |
| mfsa2021-23 | https://www.mozilla.org/en-US/security/advisories/mfsa2021-23 |
| Percentile | 0.53578 |
| EPSS Score | 0.00304 |
| Published At | April 1, 2026, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-04-01T13:17:12.117576+00:00 | Mozilla Importer | Import | https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2021/mfsa2021-23.yml | 38.0.0 |