Home > Vulnerability Database > CVE-2022-46884

Mend.io Vulnerability Database

CVE-2022-46884

Date: August 24, 2023

A potential use-after-free vulnerability existed in SVG Images if the Refresh Driver was destroyed at an inopportune time. This could have lead to memory corruption or a potentially exploitable crash. *Note*: This advisory was added on December 13th, 2022 after discovering it was inadvertently left out of the original advisory. The fix was included in the original release of Firefox 106. This vulnerability affects Firefox < 106.

Language: C++

Severity Score

8.8

Related Resources (4)

Url: https://bugzilla.mozilla.org/show_bug.cgi?id=1786818

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-46884

Url: https://www.mozilla.org/security/advisories/mfsa2022-44/

Url: https://www.mend.io/vulnerability-database/CVE-2022-46884

Severity Score

8.8

Weakness Type (CWE)

Use After Free

CWE-416

CVSS v3.1

Base Score:	8.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2022-46884

Date: August 24, 2023

Language: C++

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?