1. Home
  2. Vulnerabilities
  3. CVE-2022-45413

CVE-2022-45413

CVSS v3.1 6.1 (Medium)
61% Progress
EPSS 0.08 % (34th)
0.08% Progress
Affected Products 2
Advisories 3
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

Using the <code>S.browser_fallback_url parameter</code> parameter, an attacker could redirect a user to a URL and cause SameSite=Strict cookies to be sent.<br>This issue only affects Firefox for Android. Other operating systems are not affected.. This vulnerability affects Firefox < 107.

Weaknesses
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')
CVE Status
PUBLISHED
CNA
Mozilla Corporation
Published Date
2022-12-22 20:15:43
(21 months ago)
Updated Date
2022-12-30 22:13:16
(20 months ago)

Affected Products

Google

Mozilla

Configuration #1

AND
    CPE23 From Up To
OR  
  Mozilla Firefox prior 107.0 version cpe:2.3:a:mozilla:firefox < 107.0
OR  
  Running on/with
  Google Android cpe:2.3:o:google:android:-