CVE-2022-26384 — Protection Mechanism Failure in Mozilla Firefox

CWE-693 — Protection Mechanism Failure CWE-179 — Incorrect Behavior Order: Early Validation17 documents8 sources

Severity

9.6CRITICALNVD

OSV8.8

EPSS

0.1%

top 69.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Firefox ESR Mozilla Thunderbird

Timeline

PublishedDec 22

Description

If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when clicked, would lead to JavaScript execution in violation of the sandbox. This vulnerability affects Firefox < 98, Firefox ESR < 91.7, and Thunderbird < 91.7.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:HExploitability: 2.8 | Impact: 6.0

Affected Packages9 packages

▶CVEListV5mozilla/firefoxunspecified — 98

▶NVDmozilla/firefox< 98.0

▶CVEListV5mozilla/firefox_esrunspecified — 91.7

▶NVDmozilla/firefox_esr< 91.7

▶Ubuntumozilla/firefox< 98.0.1+build2-0ubuntu0.18.04.1+5

🔴Vulnerability Details

CVEList

CVE-2022-26384: If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when cl↗2022-12-22

▶

OSV

CVE-2022-26384: If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when cl↗2022-12-22

▶

GHSA

GHSA-cwm9-q742-vjcx: If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when cl↗2022-12-22

▶

OSV

firefox regressions↗2022-03-24

▶

OSV

thunderbird vulnerabilities↗2022-03-23

▶

📋Vendor Advisories

Ubuntu

Firefox regressions↗2022-03-24

▶

Ubuntu

Thunderbird vulnerabilities↗2022-03-23

▶

Ubuntu

Firefox vulnerabilities↗2022-03-17

▶

Ubuntu

Firefox vulnerabilities↗2022-03-10

▶

Red Hat

Mozilla: iframe allow-scripts sandbox bypass↗2022-03-08

▶