cbcvebase.
CVE-2022-45411
published 2022-12-22

CVE-2022-45411: Cross-Site Tracing occurs when a server will echo a request back via the Trace method, allowing an XSS attack to access to authorization headers and cookies…

PriorityP426medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
0.57%
43.2th percentile
Cross-Site Tracing occurs when a server will echo a request back via the Trace method, allowing an XSS attack to access to authorization headers and cookies inaccessible to JavaScript (such as cookies protected by HTTPOnly). To mitigate this attack, browsers placed limits on fetch() and XMLHttpRequest; however some webservers have implemented non-standard headers such as X-Http-Method-Override that override the HTTP method, and made this attack possible again. Thunderbird has applied the same mitigations to the use of this and similar headers. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.

Affected

19 ranges
VendorProductVersion rangeFixed in
debianfirefox< firefox 107.0-1 (sid)firefox 107.0-1 (sid)
debianfirefox-esr< firefox 107.0-1 (sid)firefox 107.0-1 (sid)
debianthunderbird< firefox 107.0-1 (sid)firefox 107.0-1 (sid)
mozillafirefox< 107.0107.0
mozillafirefox
mozillafirefox>= 0 < 107.0+build2-0ubuntu0.18.04.1107.0+build2-0ubuntu0.18.04.1
mozillafirefox>= 0 < 107.0+build2-0ubuntu0.20.04.1107.0+build2-0ubuntu0.20.04.1
mozillafirefox>= unspecified < 107107
mozillafirefox_esr< 102.5102.5
mozillafirefox_esr>= unspecified < 102.5102.5
mozillathunderbird< 102.5102.5
mozillathunderbird>= 0 < 1:102.5.0-1~deb11u11:102.5.0-1~deb11u1
mozillathunderbird>= 0 < 1:102.5.0-11:102.5.0-1
mozillathunderbird>= 0 < 1:102.5.0-11:102.5.0-1
mozillathunderbird>= 0 < 1:102.5.0-11:102.5.0-1
mozillathunderbird>= 0 < 1:102.7.1+build2-0ubuntu0.18.04.11:102.7.1+build2-0ubuntu0.18.04.1
mozillathunderbird>= 0 < 1:102.7.1+build2-0ubuntu0.20.04.11:102.7.1+build2-0ubuntu0.20.04.1
mozillathunderbird>= 0 < 1:102.7.1+build2-0ubuntu0.22.04.11:102.7.1+build2-0ubuntu0.22.04.1
mozillathunderbird>= unspecified < 102.5102.5

CVSS provenance

nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
osv8.1HIGH
vendor_ubuntu8.1HIGH
vendor_debian6.1MEDIUM
vendor_redhat6.1MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.