CVE-2022-28281 - log back

CVE-2022-28281 edited at 14 May 2022 20:18:43
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Arbitrary code execution
Description
+ If a compromised content process sent an unexpected number of WebAuthN Extensions in a Register command to the parent process, an out of bounds write would have occurred leading to memory corruption and a potentially exploitable crash.
References
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1755621
Notes
CVE-2022-28281 created at 14 May 2022 20:06:07