CVE-2022-29911
CVSS v3.1
6.1 (Medium)
EPSS
0.11 % (45th)
Affected Products
3
Advisories
30
An improper implementation of the new iframe sandbox keyword <code>allow-top-navigation-by-user-activation</code> could lead to script execution without <code>allow-scripts</code> being present. This vulnerability affects Thunderbird < 91.9, Firefox ESR < 91.9, and Firefox < 100.
Weaknesses
- CWE-1021
- Improper Restriction of Rendered UI Layers or Frames
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2022-12-22 20:15:25
(21 months ago) - Updated Date
-
2023-01-04 16:26:33
(20 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...