cbcvebase.
CVE-2022-38472
published 2022-12-22

CVE-2022-38472: An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This…

PriorityP430medium6.5CVSS 3.1
AVNACLPRNUIRSUCNIHAN
EPSS
0.36%
28.1th percentile
An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. This could have been used to fool the user into submitting data intended for the spoofed origin. This vulnerability affects Thunderbird < 102.2, Thunderbird < 91.13, Firefox ESR < 91.13, Firefox ESR < 102.2, and Firefox < 104.

Affected

20 ranges
VendorProductVersion rangeFixed in
debianfirefox< firefox 104.0-1 (sid)firefox 104.0-1 (sid)
debianfirefox-esr< firefox 104.0-1 (sid)firefox 104.0-1 (sid)
debianthunderbird< firefox 104.0-1 (sid)firefox 104.0-1 (sid)
mozillafirefox< 104.0104.0
mozillafirefox
mozillafirefox>= 102.0 < 102.2102.2
mozillafirefox>= unspecified < 104104
mozillafirefox_esr>= unspecified < 91.1391.13
mozillafirefox_esr>= unspecified < 102.2102.2
mozillathunderbird< 91.1391.13
mozillathunderbird>= 0 < 1:91.13.0-1~deb11u11:91.13.0-1~deb11u1
mozillathunderbird>= 0 < 1:102.2.0-11:102.2.0-1
mozillathunderbird>= 0 < 1:102.2.0-11:102.2.0-1
mozillathunderbird>= 0 < 1:102.2.0-11:102.2.0-1
mozillathunderbird>= 0 < 1:102.2.2+build1-0ubuntu0.18.04.11:102.2.2+build1-0ubuntu0.18.04.1
mozillathunderbird>= 0 < 1:102.2.2+build1-0ubuntu0.20.04.11:102.2.2+build1-0ubuntu0.20.04.1
mozillathunderbird>= 0 < 1:102.2.2+build1-0ubuntu0.22.04.11:102.2.2+build1-0ubuntu0.22.04.1
mozillathunderbird>= 102.0 < 102.2102.2
mozillathunderbird>= unspecified < 102.2102.2
mozillathunderbird>= unspecified < 91.1391.13

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
osv8.8HIGH
vendor_ubuntu8.8HIGH
vendor_debian6.5MEDIUM
vendor_redhat6.5MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.