CVE-2022-22743 An attacker-controlled tab could make the browser unable to leave fullscreen mode.
Firefox users that are relying on Google Chrome or Microsoft Edge to view sites that have been changed to require full-screen mode are advised to
CVE-2022-36314 When opening a Windows shortcut, an attacker could supply a remote path that leads to unexpected network requests. This bug only affects Firefox for Windows.
It affects Windows Server operating systems that are running Windows Server 2008 or later, but it might not occur on systems that are running Windows
CVE-2022-31741 A crafted CMS message could have led to an invalid memory read, potentially memory corruption
If a user visited a malicious website or opened a malicious file on Windows, an attacker could potentially exploit this vulnerability to access arbitrary system
CVE-2022-29914 Reusing existing popups could have allowed for browser spoofing attacks.
Thunderbird and Firefox are not vulnerable if they are using the --force-fullscreen command line argument. All versions of the browser are vulnerable to clickjacking if
CVE-2022-36315 Subresource Integrity protects against script reuse when an injection attack occurs.
If the integrity service is enabled for a script, it can be triggered by injecting a fake script that appears to come from a trusted
Episode
00:00:00
00:00:00