CVE-2022-1834 - OpenCVE

Vendors	Products
Mozilla	Thunderbird

Link	Resource
https://bugzilla.mozilla.org/show_bug.cgi?id=1767816	Issue Tracking Permissions Required Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2022-22/	Vendor Advisory

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2022-1834", "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "assignerShortName": "mozilla", "dateUpdated": "2022-12-22T00:00:00", "dateReserved": "2022-05-23T00:00:00", "datePublished": "2022-12-22T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "shortName": "mozilla", "dateUpdated": "2022-12-22T00:00:00"}, "descriptions": [{"lang": "en", "value": "When displaying the sender of an email, and the sender name contained the Braille Pattern Blank space character multiple times, Thunderbird would have displayed all the spaces. This could have been used by an attacker to send an email message with the attacker's digital signature, that was shown with an arbitrary sender email address chosen by the attacker. If the sender name started with a false email address, followed by many Braille space characters, the attacker's email address was not visible. Because Thunderbird compared the invisible sender address with the signature's email address, if the signing key or certificate was accepted by Thunderbird, the email was shown as having a valid digital signature. This vulnerability affects Thunderbird < 91.10."}], "affected": [{"vendor": "Mozilla", "product": "Thunderbird", "versions": [{"version": "unspecified", "lessThan": "91.10", "status": "affected", "versionType": "custom"}]}], "references": [{"url": "https://www.mozilla.org/security/advisories/mfsa2022-22/"}, {"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1767816"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "Braille space character caused incorrect sender email to be shown for a digitally signed email"}]}]}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*", "matchCriteriaId": "4A62DB30-D938-4ADD-BF43-9BBC56A6B8C0", "versionEndExcluding": "91.10", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "When displaying the sender of an email, and the sender name contained the Braille Pattern Blank space character multiple times, Thunderbird would have displayed all the spaces. This could have been used by an attacker to send an email message with the attacker's digital signature, that was shown with an arbitrary sender email address chosen by the attacker. If the sender name started with a false email address, followed by many Braille space characters, the attacker's email address was not visible. Because Thunderbird compared the invisible sender address with the signature's email address, if the signing key or certificate was accepted by Thunderbird, the email was shown as having a valid digital signature. This vulnerability affects Thunderbird < 91.10."}, {"lang": "es", "value": "Al mostrar el remitente de un correo electr\u00f3nico y el nombre del remitente conten\u00eda el car\u00e1cter de espacio en blanco del patr\u00f3n Braille varias veces, Thunderbird habr\u00eda mostrado todos los espacios. Un atacante podr\u00eda haberlo utilizado para enviar un mensaje de correo electr\u00f3nico con su firma digital, que se mostraba con una direcci\u00f3n de correo electr\u00f3nico de remitente arbitraria elegida por el atacante. Si el nombre del remitente comenzaba con una direcci\u00f3n de correo electr\u00f3nico falsa, seguida de muchos caracteres de espacio en Braille, la direcci\u00f3n de correo electr\u00f3nico del atacante no era visible. Debido a que Thunderbird compar\u00f3 la direcci\u00f3n del remitente invisible con la direcci\u00f3n de correo electr\u00f3nico de la firma, si Thunderbird aceptaba la clave de firma o el certificado, se mostraba que el correo electr\u00f3nico ten\u00eda una firma digital v\u00e1lida. Esta vulnerabilidad afecta a Thunderbird < 91.10."}], "id": "CVE-2022-1834", "lastModified": "2022-12-29T16:38:09.717", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-12-22T20:15:13.513", "references": [{"source": "security@mozilla.org", "tags": ["Issue Tracking", "Permissions Required", "Vendor Advisory"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1767816"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2022-22/"}], "sourceIdentifier": "security@mozilla.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-295"}], "source": "nvd@nist.gov", "type": "Primary"}]}

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction Required

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction Required

JSON object

JSON object

JSON object