摘要:
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of when downloading files on Windows, the % character was not escaped, which could have led to a download incorrectly saved to attacker-influenced paths that used variables such as %HOMEPATH% or %APPDATA%.
安全等级: Low
公告ID: KylinSec-SA-2022-1542
发布日期: 2022年6月20日
关联CVE: CVE-2022-31739
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of when downloading files on Windows, the % character was not escaped, which could have led to a download incorrectly saved to attacker-influenced paths that used variables such as %HOMEPATH% or %APPDATA%.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2022-31739 | KY3.4-4A | firefox | Unaffected |
| CVE-2022-31739 | KY3.4-5 | firefox | Unaffected |
| CVE-2022-31739 | KY3.5.1 | firefox | Unaffected |
