Check Point Reference: |
CPAI-2022-1998 |
Date Published: |
29 Jan 2024 |
Severity: |
High
|
Last Updated: |
Monday 29 January, 2024 |
Source: |
|
Industry Reference: | CVE-2022-1529
|
Protection Provided by: |
Security Gateway R81, R80, R77, R75 |
Who is Vulnerable? | Mozilla Firefox prior to 100.0.2 Mozilla Firefox ESR prior to 91.9.1 Mozilla Thunderbird prior to 91.9.1 |
Vulnerability Description |
A prototype pollution vulnerability exists in multiple Mozilla products. The JavaScript __proto__ property object exposes the internal Prototype to an attack. A remote attacker can exploit this vulnerability by modifying the exposed prototype's property of an object. Successful exploitation of this vulnerability could result in a arbitrary code execution on the victim machine. |