CVE-2022-26485 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2022-26485

Mozilla | FirefoxAdded 2022-03-07Remediation Deadline 2022-03-21

Mozilla Firefox Use-After-Free Vulnerability

Mozilla Firefox contains a use-after-free vulnerability in XSLT parameter processing which can be exploited to perform arbitrary code execution.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-416

References

https://nvd.nist.gov/vuln/detail/CVE-2022-26485