Vulnerability CVE-2022-22757


Published: 2022-12-22

Description:
Remote Agent, used in WebDriver, did not validate the Host or Origin headers. This could have allowed websites to connect back locally to the user's browser to control it. <br>*This bug only affected Firefox when WebDriver was enabled, which is not the default configuration.*. This vulnerability affects Firefox < 97.

 References:
https://bugzilla.mozilla.org/show_bug.cgi?id=1720098
https://www.mozilla.org/security/advisories/mfsa2022-04/

Copyright 2026, cxsecurity.com

 

Back to Top