CVE-2022-29915

Medium

4.3/10

Summary

The Performance API did not properly hide the fact whether a request cross-origin resource has observed redirects. This vulnerability affects Firefox < 100.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: LOW
Availability Impact: NONE

References

Advisory Timeline

Published Dec 22, 2022

CVE-2022-29915

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS