VDB
CVE-2022-46883
CVE-2022-46883
PUBLISHED
CVSS 8.800000190734863 HIGH
Mozilla developers Gabriele Svelto, Yulia Startsev, Andrew McCreight and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 106. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.<br />*Note*: This advisory was added on December 13th, 2022 after discovering it was inadvertently left out of the original advisory. The fix was included in the original release of Firefox 107. This vulnerability affects Firefox < 107.
EPSS 0.69% · 72.2th percentile
Risk Scores
CVSS v3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.69%
72.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Firefox | unspecified |
| mozilla | firefox | 0 |
Timeline
- Dec 22, 2022 CVE Published
- Dec 23, 2022 EPSS Score
- Feb 2, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 16, 2023 EPSS Score
- Apr 26, 2023 EPSS Score
- Jun 7, 2023 EPSS Score
- Jul 18, 2023 EPSS Score
- Aug 29, 2023 EPSS Score
- Oct 9, 2023 EPSS Score
- Nov 20, 2023 EPSS Score
- Dec 31, 2023 EPSS Score