VDB
CISA-2022-31748
CISA-2022-31748
PUBLISHED
CVSS 9.8 CRITICAL
Reported by mozilla · Published December 22, 2022
Mozilla developers Gabriele Svelto, Timothy Nikkel, Randell Jesup, Jon Coppeard, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 100. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 101.
Risk Scores
CVSS 3.1
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Firefox | unspecified |
| Mozilla | Firefox | *, unspecified |
Timeline
- Dec 22, 2022 CVE Published
- Apr 15, 2025 CVE Updated