CVE Vulnerabilities

CVE-2022-22750

Published: Dec 22, 2022 | Modified: Dec 29, 2022
CVSS 3.x
6.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

By generally accepting and passing resource handles across processes, a compromised content process might have confused higher privileged processes to interact with handles that the unprivileged process should not have access to.This bug only affects Firefox for Windows and MacOS. Other operating systems are unaffected.. This vulnerability affects Firefox < 96.

Affected Software

Name Vendor Start Version End Version
Firefox Mozilla * 96.0 (excluding)
Firefox Ubuntu upstream *

References