Vulnerabilities > CVE-2022-45418 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Mozilla Firefox

047910
CVSS 6.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
mozilla
CWE-1021

Summary

If a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have been drawn over the browser UI, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.

Vulnerable Configurations

Part Description Count
Application
Mozilla
1526