CVE-2022-22752
First published: Tue Jan 11 2022(Updated: )
Mozilla developers Christian Holler and Jason Kratzer reported memory safety bugs present in Firefox 95. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
Credit: security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Firefox | <96 | 96 |
| Firefox | <96.0 | |
| <96.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the severity of CVE-2022-22752?
CVE-2022-22752 has been classified as high severity due to potential memory corruption vulnerabilities.
How do I fix CVE-2022-22752?
To fix CVE-2022-22752, update Mozilla Firefox to version 96 or later.
What versions of Firefox are affected by CVE-2022-22752?
CVE-2022-22752 affects versions of Mozilla Firefox prior to version 96.
Can CVE-2022-22752 be exploited?
Yes, CVE-2022-22752 may be exploitable to run arbitrary code under certain conditions.
Who reported CVE-2022-22752?
CVE-2022-22752 was reported by Mozilla developers Christian Holler and Jason Kratzer.
- agent/first-publish-date
- agent/type
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/event
- agent/trending
- agent/source
- collector/mozilla-advisory
- agent/software-canonical-lookup-request
- source/Mozilla
- agent/software-canonical-lookup
- collector/nvd-index
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- vendor/mozilla
- canonical/firefox