VDB

CISA-2022-31748

CISA-2022-31748 PUBLISHED CVSS 9.8 CRITICAL

Reported by mozilla · Published December 22, 2022

Mozilla developers Gabriele Svelto, Timothy Nikkel, Randell Jesup, Jon Coppeard, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 100. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 101.

Risk Scores

CVSS 3.1
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
MozillaFirefoxunspecified
MozillaFirefox*, unspecified

Timeline

  • Dec 22, 2022 CVE Published
  • Apr 15, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›