CVE-2022-34671 An NVIDIA GPU Display Driver has a user mode vulnerability where an unprivileged user can cause an out-of-bounds write, which may lead to code execution, denial of service, or escalated privileges.
This issue is due to a memory corruption vulnerability in the graphics driver. An attacker can inject malicious code into a privileged process, run a
CVE-2022-38473 An iframe with an XSLT document would have the parent domain's permissions.
XSLT is an XML-based transformation language that allows you to transform or create XML document using XSLT stylesheets. XSLT has been disabled by default in
CVE-2022-45408 Popups through windowName can go fullscreen without notification, spoofing attacks.
The issue was discovered by Gajra Raja John of Cisco Talos. Firefox ESR users should update to the latest version, which is currently Firefox ESR
CVE-2022-31747 Memory safety bugs were found in Firefox 100 and Firefox ESR 91.9.
It has been reported that some Windows users may have encountered crashes when visiting some websites or receiving unexpected content. If you happen to be
CVE-2022-31737 An attacker wrote code outside of WebGL memory, which could lead to memory corruption and a crash.
A malicious website could cause a user to inadvertently click a malicous link, leading to code execution. This vulnerability affects Thunderbird 91.10, Firefox 101,
Episode
00:00:00
00:00:00