PT-2022-2260 · Mozilla+10 · Thunderbird+12

0Vercl0K

Published

2021-10-12

Updated

2025-09-29

CVE-2022-28281

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Thunderbird versions prior to 91.8 Firefox versions prior to 99 Firefox ESR versions prior to 91.8

Description The issue is related to a boundary error when handling an unexpected number of WebAuthN Extensions in a Register command. This can lead to an out of bounds write, resulting in memory corruption and a potentially exploitable crash. An attacker could exploit this by creating a specially crafted web page, tricking the victim into opening it, and then performing an out of bounds write to execute arbitrary code in the system.

Recommendations For Thunderbird versions prior to 91.8, update to version 91.8 or later. For Firefox versions prior to 99, update to version 99 or later. For Firefox ESR versions prior to 91.8, update to version 91.8 or later.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALSA-2021_3816

ALSA-2021_4123

ALSA-2021_4130

ALSA-2021_5013

ALSA-2021_5045

ALSA-2022:1287

ALSA-2022:1301

ALSA-2022_0129

ALSA-2022_0130

ALSA-2022_0258

ALSA-2022_0510

ALSA-2022_0535

ALSA-2022_0818

ALSA-2022_0845

ALSA-2022_1287

ALSA-2022_1301

ALSA-2022_1705

ALSA-2022_1730

ALSA-2022_4769

ALSA-2022_4776

ALSA-2022_5482

ALSA-2022_5767

ALSA-2022_5774

ALSA-2022_5777

ALSA-2022_6164

ALSA-2022_6165

ALSA-2022_6174

ALSA-2022_6175

ALSA-2022_6700

ALSA-2022_6702

ALSA-2022_6708

ALSA-2022_6717

ALSA-2022_7070

ALSA-2022_7071

ALSA-2022_7178

ALSA-2022_7190

ALSA-2022_8547

ALSA-2022_8554

ALSA-2022_8561

ALSA-2022_8580

ALSA-2022_9065

ALSA-2022_9067

ALSA-2022_9074

ALSA-2022_9080

ALSA-2023_0808

ALSA-2023_0810

ALSA-2023_0821

ALSA-2023_0824

ALSA-2023_1786

ALSA-2023_1787

ALSA-2023_1802

ALSA-2023_1809

ALSA-2023_5184

ALSA-2023_5200

ALSA-2023_5201

ALSA-2023_5214

ALSA-2023_5224

ALSA-2023_5309

ALSA-2023_5434

ALSA-2023_5435

ALSA-2023_5537

ALSA-2023_5539

ALSA-2025_16880

ALT-PU-2022-1642

ALT-PU-2022-1809

ALT-PU-2022-1847

ALT-PU-2022-1855

ALT-PU-2022-1941

ALT-PU-2022-1951

ALT-PU-2022-1983

ALT-PU-2022-2044

ALT-PU-2022-2053

ALT-PU-2022-2458

ALT-PU-2022-2929

ALT-PU-2022-2930

ALT-PU-2023-1138

ALT-PU-2023-1139

ALT-PU-2023-4336

ALT-PU-2023-4339

BDU:2022-02369

CESA-2022_1287

CESA-2022_1301

CVE-2022-28281

DLA-2971-1

DLA-2978-1

DSA-5113-1

DSA-5118-1

ELSA-2022-1284

ELSA-2022-1287

ELSA-2022-1301

ELSA-2022-1302

MGASA-2022-0156

MGASA-2022-0157

OESA-2023-1673

OESA-2023-1674

OPENSUSE-SU-2022:1127-1

OPENSUSE-SU-2022_1127-1

OPENSUSE-SU-2022_1176-1

OPENSUSE-SU-2024:11975-1

OPENSUSE-SU-2024:14572-1

RHSA-2022:1283

RHSA-2022:1284

RHSA-2022:1285

RHSA-2022:1286

RHSA-2022:1287

RHSA-2022:1301

RHSA-2022:1302

RHSA-2022:1303

RHSA-2022:1305

RHSA-2022:1326

RHSA-2022_1284

RHSA-2022_1287

RHSA-2022_1301

RHSA-2022_1302

RLSA-2022:1287

RLSA-2022:1301

RLSA-2022_1287

RLSA-2022_1301

SUSE-RU-2022:1114-1

SUSE-RU-2022:1125-1

SUSE-RU-2022:14935-1

SUSE-SU-2022:1127-1

SUSE-SU-2022:1176-1

SUSE-SU-2022_1127-1

SUSE-SU-2022_1176-1

USN-5370-1

USN-5393-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Firefox

Firefox Esr

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Thunderbird

Ubuntu

PT-2022-2260 · Mozilla+10 · Thunderbird+12

CVE-2022-28281

Weakness Enumeration

Related Identifiers

Affected Products

References · 2262