Spoofing Attacks

2023-08-0612:07:52

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

firefox

vulnerability

spoofing attack

full-screen

window.open()

document.queryselector()

malicious overlay

fake notification

personal information

malicious link

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

47.1%

JSON

firefox is vulnerable to Spoofing Attacks. The vulnerability occurs when a website uses the window.open() function to open a new window. If the new window is opened in full-screen mode, the malicious website can use the document.querySelector() function to find the full-screen notification and then obscure it with a malicious overlay. This overlay can then be used to display a fake notification that could trick the user into taking some action, such as entering their personal information or clicking on a malicious link.

CPENameOperatorVersion
firefox:sideq81.0-2
firefox:sideq83.0-1
firefox:sideq82.0.3-1
firefox:sideq81.0-2
firefox:sideq83.0-1
firefox:sideq82.0.3-1
firefox-esr:sideq78.8.0esr-1
firefox-esr:sideq78.5.0esr-1
thunderbird:sideq1:78.5.0-1
thunderbirdeq31.6.0__1.el6_6

Name	Operator	Version
firefox:sid	eq	81.0-2
firefox:sid	eq	83.0-1
firefox:sid	eq	82.0.3-1
firefox:sid	eq	81.0-2
firefox:sid	eq	83.0-1
firefox:sid	eq	82.0.3-1
firefox-esr:sid	eq	78.8.0esr-1
firefox-esr:sid	eq	78.5.0esr-1
thunderbird:sid	eq	1:78.5.0-1
thunderbird	eq	31.6.0__1.el6_6