Lucene search
MozillaCVELIST:CVE-2022-26486HistoryDec 22, 2022 - 12:00 a.m.
CVE-2022-26486
2022-12-2200:00:00
mozilla
www.cve.org
8
webgpu
ipc
use-after-free
sandbox escape
firefox
thunderbird
focus
android
An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escape. We have had reports of attacks in the wild abusing this flaw. This vulnerability affects Firefox < 97.0.2, Firefox ESR < 91.6.1, Firefox for Android < 97.3.0, Thunderbird < 91.6.2, and Focus < 97.3.0.
CNA Affected
[
{
"vendor": "Mozilla",
"product": "Firefox",
"versions": [
{
"version": "unspecified",
"lessThan": "97.0.2",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Mozilla",
"product": "Firefox ESR",
"versions": [
{
"version": "unspecified",
"lessThan": "91.6.1",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Mozilla",
"product": "Firefox for Android",
"versions": [
{
"version": "unspecified",
"lessThan": "97.3.0",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Mozilla",
"product": "Thunderbird",
"versions": [
{
"version": "unspecified",
"lessThan": "91.6.2",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Mozilla",
"product": "Focus",
"versions": [
{
"version": "unspecified",
"lessThan": "97.3.0",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2022-12-22 20:15:00
redhatcve
redhatcve
CVE-2022-26486
2022-03-08 13:43:17
debiancve
debiancve
CVE-2022-26486
2022-12-22 20:15:22
cve
cve
CVE-2022-26486
2022-12-22 20:15:22
ubuntucve
ubuntucve
CVE-2022-26486
2022-03-06 00:00:00
alpinelinux
alpinelinux
CVE-2022-26486
2022-12-22 20:15:22
nvd
nvd
CVE-2022-26486
2022-12-22 20:15:22
veracode
veracode
Denial Of Service (DoS)
2022-03-06 15:56:59
cisa_kev
cisa_kev
Mozilla Firefox Use-After-Free Vulnerability
2022-03-07 00:00:00
attackerkb
attackerkb
CVE-2022-26486
2022-12-22 00:00:00
nessus
nessus
Mozilla Thunderbird < 91.6.2
2022-03-07 00:00:00
SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2022:0777-1)
2022-03-10 00:00:00
openSUSE 15 Security Update : MozillaFirefox (openSUSE-SU-2022:0783-1)
2022-03-10 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2022-03-08 21:56:13
Updated firefox packages fix security vulnerabilities
2022-03-06 13:40:17
suse
suse
Security update for MozillaFirefox (important)
2022-03-09 00:00:00
Security update for MozillaThunderbird (important)
2022-03-10 00:00:00
debian
debian
[SECURITY] [DLA 2933-1] firefox-esr security update
2022-03-07 12:21:10
[SECURITY] [DSA 5094-1] thunderbird security update
2022-03-08 19:52:26
[SECURITY] [DSA 5090-1] firefox-esr security update
2022-03-06 20:43:23
kaspersky
kaspersky
KLA12469 Multiple vulnerabilities in Mozilla Firefox ESR
2022-03-05 00:00:00
KLA12470 Multiple vulnerabilities in Mozilla Firefox
2022-03-05 00:00:00
KLA12475 Multiple vulnerabilities in Mozilla Thunderbird
2022-03-05 00:00:00
osv
osv
firefox-esr - security update
2022-03-06 00:00:00
thunderbird - security update
2022-03-08 00:00:00
thunderbird - security update
2022-03-09 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0089)
2022-03-07 00:00:00
Mozilla Firefox ESR Security Advisory (MFSA2022-09) - Mac OS X
2022-03-07 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0804-1)
2022-03-11 00:00:00
threatpost
threatpost
Critical Firefox Zero-Day Bugs Allow RCE, Sandbox Escape
2022-03-07 16:19:15
ubuntu
ubuntu
Firefox vulnerabilities
2022-03-06 00:00:00
redos
redos
ROS-20220309-02
2022-03-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 91.6.1-alt1
2022-03-11 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 91.6.2-alt1
2022-03-15 00:00:00
malwarebytes
malwarebytes
Update now! Mozilla patches two actively exploited vulnerabilities
2022-03-07 20:25:18
thn
thn
slackware
slackware
[slackware-security] mozilla-firefox
2022-03-05 20:04:04
mozilla
mozilla
redhat
redhat
(RHSA-2022:0817) Critical: firefox security update
2022-03-10 14:35:51
(RHSA-2022:0815) Critical: firefox security update
2022-03-10 14:33:08
(RHSA-2022:0818) Critical: firefox security update
2022-03-10 14:36:51
oraclelinux
oraclelinux
firefox security and bug fix update
2022-03-10 00:00:00
firefox security update
2022-03-10 00:00:00
thunderbird security update
2022-03-14 00:00:00
rocky
rocky
firefox security update
2022-03-10 14:36:51
thunderbird security update
2022-03-14 09:49:10
almalinux
almalinux
Critical: firefox security update
2022-03-10 14:36:51
Important: thunderbird security update
2022-03-14 09:49:10
centos
centos
firefox security update
2022-03-29 13:53:09
thunderbird security update
2022-03-29 13:54:14
amazon
amazon
Important: thunderbird
2022-04-25 22:56:00
cisa
cisa
CISA Adds 11 Known Exploited Vulnerabilities to Catalogβ―
2022-03-07 00:00:00
hivepro
hivepro
Weekly Threat Digest: 28 February β 6 March 2022
2022-03-09 11:09:41
ibm
ibm
gentoo
gentoo
Mozilla Firefox: Multiple Vulnerabilities
2022-08-10 00:00:00
Mozilla Thunderbird: Multiple Vulnerabilities
2022-08-10 00:00:00