exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2022-34471

около 3 лет назад

When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.

CVSS3: 6.5

EPSS: Низкий

CVE-2022-34471

около 3 лет назад

When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.

CVSS3: 6.5

EPSS: Низкий

CVE-2022-34471

около 3 лет назад

When downloading an update for an addon, the downloaded addon update's ...

CVSS3: 6.5

EPSS: Низкий

GHSA-4h8f-5jwq-q4wm

около 3 лет назад

When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.

CVSS3: 6.5

EPSS: Низкий

SUSE-SU-2022:3273-1

больше 3 лет назад

Security update for MozillaFirefox

EPSS: Низкий

SUSE-SU-2022:3272-1

больше 3 лет назад

Security update for MozillaFirefox

EPSS: Низкий

SUSE-SU-2022:3396-1

больше 3 лет назад

Security update for MozillaFirefox

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-34471 When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.	CVSS3: 6.5	0% Низкий	около 3 лет назад
CVE-2022-34471 When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.	CVSS3: 6.5	0% Низкий	около 3 лет назад
CVE-2022-34471 When downloading an update for an addon, the downloaded addon update's ...	CVSS3: 6.5	0% Низкий	около 3 лет назад
GHSA-4h8f-5jwq-q4wm When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.	CVSS3: 6.5	0% Низкий	около 3 лет назад
SUSE-SU-2022:3273-1 Security update for MozillaFirefox			больше 3 лет назад
SUSE-SU-2022:3272-1 Security update for MozillaFirefox			больше 3 лет назад
SUSE-SU-2022:3396-1 Security update for MozillaFirefox			больше 3 лет назад

Уязвимостей на страницу