An update for firefox is now available for Rocky Linux 9.
Rocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.
This update upgrades Firefox to version 102.5.0 ESR.
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

altlinux 2

oraclelinux 6

nessus 52

kaspersky 3

redhat 16

osv 12

mageia 2

almalinux 4

debian 4

openvas 23

rocky 2

mozilla 3

centos 2

slackware 2

ibm 1

gentoo 2

ubuntu 2

redos 2

veracode 7

prion 11

debiancve 10

cnvd 5

alpinelinux 7

cve 7

redhatcve 6

ubuntucve 6

altlinux

Security fix for the ALT Linux 10 package firefox-esr version 102.5.0-alt1

2022-11-16 00:00:00

Security fix for the ALT Linux 10 package thunderbird version 102.5.0-alt1

2022-11-24 00:00:00

oraclelinux

firefox security update

2022-11-22 00:00:00

firefox security update

2022-11-24 00:00:00

firefox security update

2022-11-22 00:00:00

nessus

Mozilla Thunderbird < 102.5

2022-11-16 00:00:00

Rocky Linux 8 : firefox (RLSA-2022:8580)

2023-01-30 00:00:00

Rocky Linux 8 : thunderbird (RLSA-2022:8547)

2022-11-23 00:00:00

kaspersky

KLA20051 Multiple vulnerabilities in Mozilla Thunderbird

2022-11-15 00:00:00

KLA20050 Multiple vulnerabilities in Mozilla Firefox ESR

2022-11-15 00:00:00

KLA20049 Multiple vulnerabilities in Mozilla Firefox

2022-11-15 00:00:00

redhat

(RHSA-2022:8979) Important: firefox security update

2022-12-13 15:31:14

(RHSA-2022:8561) Important: thunderbird security update

2022-11-21 16:11:52

(RHSA-2022:8544) Important: thunderbird security update

2022-11-21 11:11:27

osv

Important: thunderbird security update

2022-11-21 00:00:00

thunderbird - security update

2022-11-17 00:00:00

firefox-esr - security update

2022-11-16 00:00:00

mageia

Updated thunderbird packages fix security vulnerability

2022-11-17 23:45:15

Updated firefox packages fix security vulnerability

2022-11-17 23:45:15

almalinux

Important: thunderbird security update

2022-11-21 00:00:00

Important: thunderbird security update

2022-11-21 00:00:00

Important: firefox security update

2022-11-21 00:00:00

debian

[SECURITY] [DSA 5282-1] firefox-esr security update

2022-11-16 19:36:41

[SECURITY] [DLA 3199-1] firefox-esr security update

2022-11-17 19:18:41

[SECURITY] [DLA 3196-1] thunderbird security update

2022-11-17 11:54:17

openvas

SUSE: Security Advisory (SUSE-SU-2022:4083-1)

2022-11-21 00:00:00

Debian: Security Advisory (DSA-5284-1)

2022-11-19 00:00:00

Mozilla Firefox ESR Security Advisories (MFSA2022-47, MFSA2022-49) - Mac OS X

2022-11-16 00:00:00

rocky

firefox security update

2022-11-21 12:37:04

thunderbird security update

2022-11-21 11:16:30

mozilla

Security Vulnerabilities fixed in Thunderbird 102.5 — Mozilla

2022-11-15 00:00:00

Security Vulnerabilities fixed in Firefox ESR 102.5 — Mozilla

2022-11-15 00:00:00

Security Vulnerabilities fixed in Firefox 107 — Mozilla

2022-11-15 00:00:00

centos

firefox security update

2022-11-30 22:58:26

thunderbird security update

2022-11-30 22:59:37

slackware

[slackware-security] mozilla-firefox

2022-11-17 02:00:08

[slackware-security] mozilla-thunderbird

2022-11-17 02:00:24

ibm

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 102.5ESR) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF16

2022-12-20 06:00:21

gentoo

Mozilla Thunderbird: Multiple Vulnerabilities

2022-11-22 00:00:00

Mozilla Firefox: Multiple Vulnerabilities

2022-11-22 00:00:00

ubuntu

Firefox vulnerabilities

2022-11-16 00:00:00

Thunderbird vulnerabilities

2023-02-06 00:00:00

redos

ROS-20221118-05

2022-11-18 00:00:00

ROS-20221118-04

2022-11-18 00:00:00

veracode

Symlink Attacks

2022-11-19 18:49:56

Use After Free

2022-11-19 14:27:02

Spoofing Attacks

2022-11-19 18:47:29

prion

Memory corruption

2022-12-22 20:15:00

Design/Logic Flaw

2022-12-22 20:15:00

Design/Logic Flaw

2022-12-22 20:15:00

debiancve

CVE-2022-45411

2022-12-22 20:15:00

CVE-2022-45404

2022-12-22 20:15:00

CVE-2022-45406

2022-12-22 20:15:00

cnvd

Mozilla Firefox backlink vulnerability

2022-11-21 00:00:00

Mozilla Firefox has an unspecified vulnerability (CNVD-2023-15821)

2022-11-21 00:00:00

Mozilla Firefox has an unspecified vulnerability (CNVD-2023-15817)

2022-11-21 00:00:00

alpinelinux

CVE-2022-45410

2022-12-22 20:15:00

CVE-2022-45408

2022-12-22 20:15:00

CVE-2022-45409

2022-12-22 20:15:00

cve

CVE-2022-45408

2022-12-22 20:15:00

CVE-2022-45403

2022-12-22 20:15:00

CVE-2022-45418

2022-12-22 20:15:00

redhatcve

CVE-2022-45418

2022-11-16 12:56:50

CVE-2022-45405

2022-11-16 11:26:09

CVE-2022-45416

2022-11-16 12:56:40

ubuntucve

CVE-2022-45421

2022-11-16 00:00:00

CVE-2022-45403

2022-11-15 00:00:00

CVE-2022-45404

2022-11-16 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

JSON

Related for RLSA-2022:8580