Lucene search
MozillaCVELIST:CVE-2022-38473HistoryDec 22, 2022 - 12:00 a.m.
CVE-2022-38473
2022-12-2200:00:00
mozilla
www.cve.org
1
cross-origin iframe
xslt document
parent domain
permissions
thunderbird
firefox esr
firefox
A cross-origin iframe referencing an XSLT document would inherit the parent domain’s permissions (such as microphone or camera access). This vulnerability affects Thunderbird < 102.2, Thunderbird < 91.13, Firefox ESR < 91.13, Firefox ESR < 102.2, and Firefox < 104.
CNA Affected
[
{
"vendor": "Mozilla",
"product": "Thunderbird",
"versions": [
{
"version": "unspecified",
"lessThan": "102.2",
"status": "affected",
"versionType": "custom"
},
{
"version": "unspecified",
"lessThan": "91.13",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Mozilla",
"product": "Firefox ESR",
"versions": [
{
"version": "unspecified",
"lessThan": "91.13",
"status": "affected",
"versionType": "custom"
},
{
"version": "unspecified",
"lessThan": "102.2",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Mozilla",
"product": "Firefox",
"versions": [
{
"version": "unspecified",
"lessThan": "104",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
debiancve
debiancve
CVE-2022-38473
2022-12-22 20:15:36
cve
cve
CVE-2022-38473
2022-12-22 20:15:36
nvd
nvd
CVE-2022-38473
2022-12-22 20:15:36
ubuntucve
ubuntucve
CVE-2022-38473
2022-08-24 00:00:00
prion
prion
Cross site scripting
2022-12-22 20:15:00
redhatcve
redhatcve
CVE-2022-38473
2022-08-23 14:11:07
alpinelinux
alpinelinux
CVE-2022-38473
2022-12-22 20:15:36
veracode
veracode
Arbitrary Code Execution
2022-09-04 11:42:34
openvas
openvas
Debian: Security Advisory (DSA-5221-1)
2022-08-31 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:3007-1)
2022-09-05 00:00:00
Debian: Security Advisory (DLA-3080-1)
2022-08-25 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2022-09-05 00:00:00
Security update for MozillaThunderbird (important)
2022-09-15 00:00:00
Security update for MozillaFirefox (important)
2022-09-26 00:00:00
nessus
nessus
SUSE SLES15 Security Update : MozillaFirefox (SUSE-SU-2022:2984-1)
2022-09-02 00:00:00
Debian DSA-5217-1 : firefox-esr - security update
2022-08-25 00:00:00
Mozilla Thunderbird < 91.13
2022-08-23 00:00:00
debian
debian
[SECURITY] [DLA 3080-1] firefox-esr security update
2022-08-24 20:10:43
[SECURITY] [DSA 5221-1] thunderbird security update
2022-08-29 20:31:19
[SECURITY] [DSA 5217-1] firefox-esr security update
2022-08-24 19:16:31
mageia
mageia
Updated thunderbird packages fix security vulnerability
2022-08-29 08:07:41
Updated firefox/nss packages fix security vulnerability
2022-08-26 00:21:07
osv
osv
thunderbird - security update
2022-09-04 00:00:00
thunderbird - security update
2022-08-29 00:00:00
firefox-esr - security update
2022-08-24 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 91.13 — Mozilla
2022-08-23 00:00:00
Security Vulnerabilities fixed in Firefox ESR 91.13 — Mozilla
2022-08-23 00:00:00
Security Vulnerabilities fixed in Firefox ESR 102.2 — Mozilla
2022-08-23 00:00:00
kaspersky
kaspersky
KLA15729 Multiple vulnerabilities in Mozilla Thunderbird
2022-08-23 00:00:00
KLA15727 Multiple vulnerabilities in Mozilla Firefox ESR
2022-08-23 00:00:00
KLA15730 Multiple vulnerabilities in Mozilla Thunderbird
2022-08-23 00:00:00
slackware
slackware
[slackware-security] mozilla-thunderbird
2022-08-23 19:39:04
[slackware-security] mozilla-firefox
2022-08-23 19:38:49
SSA-2022-0906204408
2022-09-06 20:44:08
almalinux
almalinux
Important: thunderbird security update
2022-08-24 00:00:00
Important: firefox security update
2022-08-24 00:00:00
Important: thunderbird security update
2022-08-24 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2022-08-24 00:00:00
Thunderbird vulnerabilities
2022-10-07 00:00:00
redhat
redhat
(RHSA-2022:6169) Important: thunderbird security update
2022-08-24 16:37:10
(RHSA-2022:6179) Important: firefox security update
2022-08-24 17:04:00
(RHSA-2022:6175) Important: firefox security update
2022-08-24 16:55:47
rocky
rocky
thunderbird security update
2022-08-24 15:28:25
firefox security update
2022-08-24 16:55:47
centos
centos
thunderbird security update
2022-09-01 22:01:42
firefox security update
2022-09-01 22:00:44
oraclelinux
oraclelinux
firefox security update
2022-08-25 00:00:00
firefox security update
2022-08-25 00:00:00
thunderbird security update
2022-08-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 102.2.0-alt1
2022-08-24 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 102.2.0-alt1
2022-08-25 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2022-08-31 00:00:00
Mozilla Firefox: Multiple Vulnerabilities
2022-08-31 00:00:00
amazon
amazon
Important: thunderbird
2022-09-30 07:04:00
redos
redos
ROS-20221007-05
2022-10-07 00:00:00
ROS-20221007-04
2022-10-07 00:00:00
ibm
ibm
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0035
2023-06-22 00:00:00