Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2022-31743

Опубликовано: 22 дек. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 6.5

Описание

Firefox's HTML parser did not correctly interpret HTML comment tags, resulting in an incongruity with other browsers. This could have been used to escape HTML comments on pages that put user-controlled data in them. This vulnerability affects Firefox < 101.

РелизСтатусПримечание
bionic

released

101.0.1+build1-0ubuntu0.18.04.1
devel

not-affected

code not present
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

101.0.1+build1-0ubuntu0.20.04.1
impish

released

101.0.1+build1-0ubuntu0.21.10.1
jammy

not-affected

code not present
kinetic

not-affected

code not present
lunar

not-affected

code not present
mantic

not-affected

code not present

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

esm-apps/bionic

ignored

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

impish

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

esm-apps/focal

ignored

esm-infra-legacy/trusty

DNE

esm-infra/bionic

ignored

focal

ignored

impish

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

ignored

focal

ignored

impish

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/jammy

ignored

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

impish

ignored

end of life
jammy

ignored

kinetic

ignored

end of life, was needs-triage
lunar

ignored

end of life, was needs-triage

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

impish

DNE

jammy

ignored

kinetic

DNE

lunar

DNE

mantic

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 63%
0.00455
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2022-31743

CVSS3: 6.5
nvd
почти 3 года назад

Firefox's HTML parser did not correctly interpret HTML comment tags, resulting in an incongruity with other browsers. This could have been used to escape HTML comments on pages that put user-controlled data in them. This vulnerability affects Firefox < 101.

debian логотип

CVE-2022-31743

CVSS3: 6.5
debian
почти 3 года назад

Firefox's HTML parser did not correctly interpret HTML comment tags, r ...

github логотип

GHSA-6wvv-23hx-p89r

CVSS3: 6.5
github
почти 3 года назад

Firefox's HTML parser did not correctly interpret HTML comment tags, resulting in an incongruity with other browsers. This could have been used to escape HTML comments on pages that put user-controlled data in them. This vulnerability affects Firefox < 101.

fstec логотип

BDU:2022-04379

CVSS3: 4.7
fstec
больше 3 лет назад

Уязвимость синтаксического анализатора HTML браузеров Firefox, позволяющая нарушителю проводить межсайтовые сценарные атаки

EPSS

Процентиль: 63%
0.00455
Низкий

6.5 Medium

CVSS3

Уязвимость CVE-2022-31743