Mozilla Firefox up to 101 on iOS Internal URL Protection access control

A vulnerability has been found in Mozilla Firefox up to 101 on iOS (Web Browser) and classified as critical. Affected by this vulnerability is an unknown code of the component Internal URL Protection. Upgrading to version 102 eliminates this vulnerability. The upgrade is hosted for download at mozilla.org.

Field07/19/2022 05:50 PM08/06/2022 02:33 PM
vendorMozillaMozilla
nameFirefoxFirefox
version<=101<=101
platformiOSiOS
componentInternal URL ProtectionInternal URL Protection
cwe284 (access control)284 (access control)
risk22
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiRR
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
date1656453600 (06/29/2022)1656453600 (06/29/2022)
identifiermfsa2022-27mfsa2022-27
urlhttps://www.mozilla.org/en-US/security/advisories/mfsa2022-27/https://www.mozilla.org/en-US/security/advisories/mfsa2022-27/
person_nameMuneaki NishimuraMuneaki Nishimura
confirm_urlhttps://bugzilla.mozilla.org/show_bug.cgi?id=1654416https://bugzilla.mozilla.org/show_bug.cgi?id=1654416
nameUpgradeUpgrade
upgrade_version102102
upgrade_urlhttps://www.mozilla.org/en-US/security/advisories/mfsa2022-27/https://www.mozilla.org/en-US/security/advisories/mfsa2022-27/
cveCVE-2022-31746CVE-2022-31746
typeWeb BrowserWeb Browser
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss2_vuldb_basescore7.57.5
cvss2_vuldb_tempscore6.56.5
cvss3_vuldb_basescore6.36.3
cvss3_vuldb_tempscore6.06.0
cvss3_meta_basescore6.36.3
cvss3_meta_tempscore6.06.0
price_0day$25k-$100k$25k-$100k
cve_assigned1653516000 (05/26/2022)

Interested in the pricing of exploits?

See the underground prices here!