Memory corruption

2022-12-2220:15:00

PRIOn knowledge base

www.prio-n.com

mozilla

memory safety

memory corruption

firefox 96

arbitrary code

vulnerability

nvd

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.4%

JSON

Mozilla developers and community members Gabriele Svelto, Sebastian Hengst, Randell Jesup, Luan Herrera, Lars T Hansen, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 97.

CPENameOperatorVersion
firefoxlt97.0

CPE	Name	Operator	Version
	firefox	lt	97.0

References

bugzilla.mozilla.org/buglist.cgi?bug_id=1713579%2C1735448%2C1743821%2C1746313%2C1746314%2C1746316%2C1746321%2C1746322%2C1746323%2C1746412%2C1746430%2C1746451%2C1746488%2C1746875%2C1746898%2C1746905%2C1746907%2C1746917%2C1747128%2C1747137%2C1747331%2C1747346%2C1747439%2C1747457%2C1747870%2C1749051%2C1749274%2C1749831

www.mozilla.org/security/advisories/mfsa2022-04/