CVE-2022-42929

Public on 2022-11-29

Modified on 2024-02-05

Description

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a website called window.print() causing a denial of service of the browser, which may persist beyond browser restart depending on the user's session restore settings.

Severity

Medium

See what this means

CVSS v3 Base Score

6.1

See breakdown

Affected Packages

Platform	Package	Release Date	Advisory
Amazon Linux 2 - Firefox Extra	firefox	2023-08-21 21:01	ALAS2FIREFOX-2023-010
Amazon Linux 2 - Core	thunderbird	2022-12-01 20:32	ALAS2-2022-1900

CVSS Scores

	Score Type	Score	Vector
Amazon Linux	CVSSv3	6.1	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
NVD	CVSSv3	6.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References

Red Hat: CVE-2022-42929 Mitre: CVE-2022-42929 FAQs regarding Amazon Linux ALAS/CVE Severity