If a user was convinced to drag and drop an image to their desktop or other folder, the resulting object could have been changed into an executable script which would have run arbitrary code after the user clicked on it. This vulnerability affects Firefox < 97, Thunderbird < 91.6, and Firefox ESR < 91.6.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2022-12-22T00:00:00
Updated: 2024-08-03T03:21:49.129Z
Reserved: 2022-01-07T00:00:00
Link: CVE-2022-22756
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-12-22T20:15:18.467
Modified: 2022-12-29T23:09:34.270
Link: CVE-2022-22756
Redhat