Astra Linux - уязвимость в firefox

🗓️ 20 May 2026 05:53:00Reported by AstraLinuxType

Firefox before 102: sandboxed iframe with allow-top-navigation-by-user-activation redirects to external protocol, triggering a prompt.

Reporter	Title	Published	Views	Family All 56
AlpineLinux	CVE-2022-34474	22 Dec 202200:00	–	alpinelinux
CNNVD	Mozilla Firefox 输入验证错误漏洞	28 Jun 202200:00	–	cnnvd
CVE	CVE-2022-34474	22 Dec 202200:00	–	cve
Cvelist	CVE-2022-34474	22 Dec 202200:00	–	cvelist
Debian CVE	CVE-2022-34474	22 Dec 202200:00	–	debiancve
EUVD	EUVD-2022-37429	3 Oct 202520:07	–	euvd
Tenable Nessus	GLSA-202208-08 : Mozilla Firefox: Multiple Vulnerabilities	16 Aug 202200:00	–	nessus
Tenable Nessus	Mozilla Firefox < 102.0	29 Jun 202200:00	–	nessus
Tenable Nessus	Mozilla Firefox < 102.0	29 Jun 202200:00	–	nessus
Tenable Nessus	Photon OS 5.0: Mozjs PHSA-2023-5.0-0035	24 Jul 202400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Astra Linux	4.7	arm	firefox	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb
Astra Linux	4.7	arm	firefox-dev	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox-dev_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb
Astra Linux	4.7	arm	firefox-geckodriver	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox-geckodriver_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb
Astra Linux	4.7	arm	firefox-locale-af	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox-locale-af_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb
Astra Linux	4.7	arm	firefox-locale-an	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox-locale-an_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb
Astra Linux	4.7	arm	firefox-locale-ar	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox-locale-ar_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb
Astra Linux	4.7	arm	firefox-locale-as	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox-locale-as_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb
Astra Linux	4.7	arm	firefox-locale-ast	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox-locale-ast_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb
Astra Linux	4.7	arm	firefox-locale-az	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox-locale-az_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb
Astra Linux	4.7	arm	firefox-locale-be	0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11	firefox-locale-be_0:102.0+build2-0ubuntu0.18.04.1+ci202207111653+astra11_arm.deb

Source	Link
cve	www.cve.org/CVERecord

20 May 2026 05:53Current

6.7Medium risk

Vulners AI Score6.7

CVSS 36.1

CVSS 3.16.1

EPSS0.00148

SSVC