CVE-2022-45418
6.1MEDIUMIf a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have been drawn over the browser UI, resulting in potential user confusion or spoofing attacks. This vulnerab
Publicado: 12/22/2022Actualizado: 4/15/2025
Descripción
If a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have been drawn over the browser UI, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.
Análisis IAImpulsado por IA
Productos Afectados
mozillafirefox
mozillafirefox_esr
mozillathunderbird
Referencias
- https://bugzilla.mozilla.org/show_bug.cgi?id=1795815Issue TrackingPermissions RequiredVendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-47/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-48/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-49/Vendor Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1795815Issue TrackingPermissions RequiredVendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-47/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-48/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2022-49/Vendor Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1795815Issue TrackingPermissions RequiredVendor Advisory