exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2022-34471

почти 3 года назад

When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.

CVSS3: 6.5

EPSS: Низкий

CVE-2022-34471

почти 3 года назад

When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.

CVSS3: 6.5

EPSS: Низкий

CVE-2022-34471

почти 3 года назад

When downloading an update for an addon, the downloaded addon update's ...

CVSS3: 6.5

EPSS: Низкий

GHSA-4h8f-5jwq-q4wm

почти 3 года назад

When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.

CVSS3: 6.5

EPSS: Низкий

SUSE-SU-2022:3273-1

около 3 лет назад

Security update for MozillaFirefox

EPSS: Низкий

SUSE-SU-2022:3272-1

около 3 лет назад

Security update for MozillaFirefox

EPSS: Низкий

SUSE-SU-2022:3396-1

около 3 лет назад

Security update for MozillaFirefox

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-34471 When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.	CVSS3: 6.5	0% Низкий	почти 3 года назад
CVE-2022-34471 When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.	CVSS3: 6.5	0% Низкий	почти 3 года назад
CVE-2022-34471 When downloading an update for an addon, the downloaded addon update's ...	CVSS3: 6.5	0% Низкий	почти 3 года назад
GHSA-4h8f-5jwq-q4wm When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This vulnerability affects Firefox < 102.	CVSS3: 6.5	0% Низкий	почти 3 года назад
SUSE-SU-2022:3273-1 Security update for MozillaFirefox			около 3 лет назад
SUSE-SU-2022:3272-1 Security update for MozillaFirefox			около 3 лет назад
SUSE-SU-2022:3396-1 Security update for MozillaFirefox			около 3 лет назад

Уязвимостей на страницу