5 matches found
CVE-2022-34471
When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version. This...
CVE-2022-34471
CVE-2022-34471 affects Mozilla Firefox prior to version 102, where the updater failed to verify that the downloaded addon update version matched the manifest, creating a risk that a tampered server manifest could cause a downgrade to an older addon. The issue is documented across multiple connect...
SUSE: Security Advisory (SUSE-SU-2022:3273-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12: MozillaFirefox / MozillaFirefox-branding-SLE / MozillaFirefox-devel / etc (SUSE-SU-2022:3273-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3273-1 advisory. Mozilla Firefox was updated to 102.2.0esr ESR: Fixed: Various stability, functionality, and security fixes. - MFSA 2022-34 bsc12026...
Ubuntu: Security Advisory (USN-5504-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...