CVE-2022-29910

2022-12-2200:00:00

mozilla

www.cve.org

firefox

android

hsts

persistence

vulnerability

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.6%

JSON

When closed or sent to the background, Firefox for Android would not properly record and persist HSTS settings.<br>Note: This issue only affected Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox < 100.

CNA Affected

[
  {
    "vendor": "Mozilla",
    "product": "Firefox",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "100",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]