CVE-2022-2200
CVSS v3.1
8.8 (High)
EPSS
0.54 % (78th)
Affected Products
3
Advisories
36
If an object prototype was corrupted by an attacker, they would have been able to set undesired attributes on a JavaScript object, leading to privileged code execution. This vulnerability affects Firefox < 102, Firefox ESR < 91.11, Thunderbird < 102, and Thunderbird < 91.11.
Weaknesses
- CWE-1321
- Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2022-12-22 20:15:27
(21 months ago) - Updated Date
-
2023-01-03 20:14:26
(20 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...