Vulnerability CVE-2022-31738: Information
Description
When exiting fullscreen mode, an iframe could have confused the browser about the current state of fullscreen, resulting in potential user confusion or spoofing attacks. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.
Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Fixed packages
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://www.mozilla.org/security/advisories/mfsa2022-20/ |
|
https://bugzilla.mozilla.org/show_bug.cgi?id=1756388 |
|
https://www.mozilla.org/security/advisories/mfsa2022-22/ |
|
https://www.mozilla.org/security/advisories/mfsa2022-21/ |
|