Home > Vulnerability Database > CVE-2022-45417

Mend.io Vulnerability Database

CVE-2022-45417

Date: December 22, 2022

Service Workers did not detect Private Browsing Mode correctly in all cases, which could have led to Service Workers being written to disk for websites visited in Private Browsing Mode. This would not have persisted them in a state where they would run again, but it would have leaked Private Browsing Mode details to disk. This vulnerability affects Firefox < 107.

Language: C++

Severity Score

4.3

Related Resources (4)

Url: https://bugzilla.mozilla.org/show_bug.cgi?id=1794508

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-45417

Url: https://www.mozilla.org/security/advisories/mfsa2022-47/

Url: https://www.mend.io/vulnerability-database/CVE-2022-45417

Severity Score

4.3

Weakness Type (CWE)

Improper Restriction of Rendered UI Layers or Frames

CWE-1021

CVSS v3.1

Base Score:	4.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2022-45417

Date: December 22, 2022

Language: C++

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?