Lucene search

K
cvelistMozillaCVELIST:CVE-2022-42931
HistoryDec 22, 2022 - 12:00 a.m.

CVE-2022-42931

2022-12-2200:00:00
mozilla
www.cve.org
1

5.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

Logins saved by Firefox should be managed by the Password Manager component which uses encryption to save files on-disk. Instead, the username (not password) was saved by the Form Manager to an unencrypted file on disk. This vulnerability affects Firefox < 106.

CNA Affected

[
  {
    "product": "Firefox",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "106",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

5.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%