VDB
CVE-2022-36316
CVE-2022-36316
PUBLISHED
Es existiert eine Schwachstelle in Mozilla Firefox. Der Fehler liegt in der Art und Weise, wie die Performance API mit seitenübergreifenden Weiterleitungen umgeht. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.
EPSS 0.26% · 49.5th percentile
Risk Scores
EPSS Score
0.26%
49.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Oracle Linux | |
| Open Source | Open Source CentOS | |
| Debian | Debian Linux | |
| Red Hat | Red Hat Enterprise Linux | |
| Ubuntu | Ubuntu Linux | |
| Oracle | Oracle Solaris | |
| Amazon | Amazon Linux 2 | |
| SUSE | SUSE Linux |
Timeline
- Jul 26, 2022 CVE Published
- Dec 23, 2022 EPSS Score
- Feb 2, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 16, 2023 EPSS Score
- Apr 26, 2023 EPSS Score
- Jun 7, 2023 EPSS Score
- Jul 18, 2023 EPSS Score
- Aug 29, 2023 EPSS Score
- Oct 9, 2023 EPSS Score
- Nov 20, 2023 EPSS Score
- Dec 31, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0837.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0837 advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-28/ advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-29/ advisory
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-30/ advisory
- https://lists.debian.org/debian-security-announce/2022/msg00162.html advisory
- https://ubuntu.com/security/notices/USN-5536-1 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-July/011714.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-July/011719.html advisory
- https://access.redhat.com/errata/RHSA-2022:5767 advisory
- https://access.redhat.com/errata/RHSA-2022:5776 advisory
- https://access.redhat.com/errata/RHSA-2022:5777 advisory
- https://access.redhat.com/errata/RHSA-2022:5769 advisory
- https://access.redhat.com/errata/RHSA-2022:5766 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-August/011731.html advisory
- https://access.redhat.com/errata/RHSA-2022:5765 advisory
- http://linux.oracle.com/errata/ELSA-2022-5767.html advisory
- http://linux.oracle.com/errata/ELSA-2022-5776.html advisory
- http://linux.oracle.com/errata/ELSA-2022-5777.html advisory
- https://lists.centos.org/pipermail/centos-announce/2022-August/073625.html advisory
…and 6 more