CVE-2022-42927 Information

Dec 23, 2022 cve

Description

A same-origin policy violation could have allowed the theft of cross-origin URL entries leaking the result of a redirect via performance.getEntries(). This vulnerability affects Thunderbird < 102.4 Firefox ESR < 102.4 and Firefox < 106.

Reference

https://www.mozilla.org/security/advisories/mfsa2022-46/ https://www.mozilla.org/security/advisories/mfsa2022-45/ https://www.mozilla.org/security/advisories/mfsa2022-44/ https://bugzilla.mozilla.org/show_bug.cgi?id=1789128

Share on: