CVE-2022-28795
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability within the Avira Password Manager Browser Extensions provided a potential loophole where, if a user visited a page crafted by an attacker, the discovered vulnerability could trigger the Password Manager Extension to fill in the password field automatically. An attacker could then access this information via JavaScript. The issue was fixed with the browser extensions version 2.18.5 for Chrome, MS Edge, Opera, Firefox, and Safari.
Una vulnerabilidad en las extensiones de navegador de Avira Password Manager ofrecía una posible laguna en la que, si un usuario visitaba una página diseñada por un atacante, la vulnerabilidad detectada podía hacer que la extensión de Password Manager rellenara el campo de la contraseña automáticamente. Un atacante podría entonces acceder a esta información por medio de JavaScript. El problema ha sido corregido con la versión 2.18.5 de las extensiones del navegador para Chrome, MS Edge, Opera, Firefox y Safari
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-04-07 CVE Reserved
- 2022-04-12 CVE Published
- 2023-11-03 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (1)
URL | Tag | Source |
---|---|---|
https://support.norton.com/sp/static/external/tools/security-advisories.html | Third Party Advisory |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Avira Search vendor "Avira" | Password Manager Search vendor "Avira" for product "Password Manager" | 2.18.4 Search vendor "Avira" for product "Password Manager" and version "2.18.4" | safari |
Affected
| ||||||
Avira Search vendor "Avira" | Password Manager Search vendor "Avira" for product "Password Manager" | 2.18.4.3847 Search vendor "Avira" for product "Password Manager" and version "2.18.4.3847" | edge |
Affected
| ||||||
Avira Search vendor "Avira" | Password Manager Search vendor "Avira" for product "Password Manager" | 2.18.4.3847 Search vendor "Avira" for product "Password Manager" and version "2.18.4.3847" | opera |
Affected
| ||||||
Avira Search vendor "Avira" | Password Manager Search vendor "Avira" for product "Password Manager" | 2.18.4.3868 Search vendor "Avira" for product "Password Manager" and version "2.18.4.3868" | chrome |
Affected
| ||||||
Avira Search vendor "Avira" | Password Manager Search vendor "Avira" for product "Password Manager" | 2.18.4.38471 Search vendor "Avira" for product "Password Manager" and version "2.18.4.38471" | firefox |
Affected
|