When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This vulnerability affects Firefox ESR < 102.1, Firefox ESR < 91.12, Firefox < 103, Thunderbird < 102.1, and Thunderbird < 91.12.
2022-12-22T20:15:35.830
2025-04-15T17:15:35.717
Modified
CVSSv3.1: 7.5 (HIGH)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | mozilla | firefox | < 103.0 | Yes |
Application | mozilla | firefox_esr | < 102.1 | Yes |
Application | mozilla | thunderbird | < 102.1 | Yes |
Application | mozilla | firefox_esr | < 91.12 | Yes |
Application | mozilla | thunderbird | < 91.12 | Yes |