CVE-2022-22758 in FirefoxИнформация

Сводка

по MITRE • 22.12.2022

When clicking on a tel: link, USSD codes, specified after a <code>\*</code> character, would be included in the phone number. On certain phones, or on certain carriers, if the number was dialed this could perform actions on a user's account, similar to a cross-site request forgery attack.<br>*This bug only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 97.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Резервировать

07.01.2022

Раскрытие

22.12.2022

Модерация

принято

Вход

VDB-209856

EPSS

0.00364

KEV

Нет

Деятельности

Очень низкий

Источники

Do you want to use VulDB in your project?

Use the official API to access entries easily!