Security Advisory

CVE-2022-45413

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-22 00:00:00
Last updated 2025-04-15 15:01:46
Assigner mozilla
State PUBLISHED

Description

Using the <code>S.browser_fallback_url parameter</code> parameter, an attacker could redirect a user to a URL and cause SameSite=Strict cookies to be sent.<br>*This issue only affects Firefox for Android. Other operating systems are not affected.*. This vulnerability affects Firefox < 107.