Vulnerability CVE-2022-40960


Published: 2022-12-22

Description:
Concurrent use of the URL parser with non-UTF-8 data was not thread-safe. This could lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 102.3, Thunderbird < 102.3, and Firefox < 105.

 References:
https://www.mozilla.org/security/advisories/mfsa2022-42/
https://www.mozilla.org/security/advisories/mfsa2022-41/
https://www.mozilla.org/security/advisories/mfsa2022-40/
https://bugzilla.mozilla.org/show_bug.cgi?id=1787633

Copyright 2026, cxsecurity.com

 

Back to Top