Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2022-45417

Опубликовано: 22 дек. 2022
Источник: ubuntu
Приоритет: medium
CVSS3: 4.3

Описание

Service Workers did not detect Private Browsing Mode correctly in all cases, which could have led to Service Workers being written to disk for websites visited in Private Browsing Mode. This would not have persisted them in a state where they would run again, but it would have leaked Private Browsing Mode details to disk. This vulnerability affects Firefox < 107.

РелизСтатусПримечание
bionic

not-affected

107.0+build2-0ubuntu0.18.04.1
devel

not-affected

esm-infra/focal

DNE

focal

not-affected

jammy

not-affected

kinetic

not-affected

lunar

not-affected

mantic

not-affected

noble

not-affected

trusty

ignored

end of standard support

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
esm-apps/bionic

ignored

esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

trusty

DNE

upstream

ignored

xenial

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
esm-apps/focal

ignored

esm-infra/bionic

ignored

focal

ignored

jammy

DNE

kinetic

DNE

trusty

DNE

upstream

ignored

xenial

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

esm-infra/focal

ignored

focal

ignored

jammy

DNE

kinetic

DNE

trusty

DNE

upstream

ignored

xenial

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/jammy

ignored

esm-infra/focal

DNE

focal

DNE

jammy

ignored

kinetic

ignored

end of life, was needs-triage
lunar

ignored

end of life, was needs-triage
mantic

DNE

noble

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

esm-infra/focal

DNE

focal

DNE

jammy

ignored

kinetic

DNE

trusty

DNE

upstream

ignored

xenial

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needed
devel

not-affected

esm-infra/focal

DNE

focal

not-affected

jammy

not-affected

kinetic

ignored

end of life, was needed
lunar

not-affected

mantic

not-affected

noble

not-affected

trusty

ignored

end of standard support

Показывать по

Ссылки на источники

4.3 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2022-45417

CVSS3: 4.3
nvd
больше 2 лет назад

Service Workers did not detect Private Browsing Mode correctly in all cases, which could have led to Service Workers being written to disk for websites visited in Private Browsing Mode. This would not have persisted them in a state where they would run again, but it would have leaked Private Browsing Mode details to disk. This vulnerability affects Firefox < 107.

debian логотип

CVE-2022-45417

CVSS3: 4.3
debian
больше 2 лет назад

Service Workers did not detect Private Browsing Mode correctly in all ...

github логотип

GHSA-284c-r484-8cqh

CVSS3: 4.3
github
больше 2 лет назад

Service Workers did not detect Private Browsing Mode correctly in all cases, which could have led to Service Workers being written to disk for websites visited in Private Browsing Mode. This would not have persisted them in a state where they would run again, but it would have leaked Private Browsing Mode details to disk. This vulnerability affects Firefox < 107.

fstec логотип

BDU:2024-06948

CVSS3: 4.3
fstec
почти 3 года назад

Уязвимость службы Service Workers режима приватного просмотра веб-браузера Firefox, связанная с некорректным ограничением визуализируемых слоев пользовательского интерфейса, позволяющая нарушителю получить доступ к конфиденциальным данным

4.3 Medium

CVSS3