CVE-2022-26485
Mozilla Firefox Use-After-Free Vulnerability
CVSS
—
No CVSS
EPSS
14.3%
p96
KEV
YES
Mar 7, 2022
Exploit Today
79
0-100
Published: — · Last modified: —
14.3%EPSS · 30 days14.3%
2026-06-302026-07-16
Product
Mozilla / Firefox
Vulnerability
Mozilla Firefox Use-After-Free Vulnerability
Added to KEV
Mar 7, 2022
Remediate by
Mar 21, 2022
Known ransomware use
No
Summary description
Mozilla Firefox contains a use-after-free vulnerability in XSLT parameter processing which can be exploited to perform arbitrary code execution.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2022-26485
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2015-4495—99.3%
KEV—80Mozilla Firefox Security Feature Bypass Vulnerability—CVE-2024-9680—97.5%
KEV—79Mozilla Firefox Use-After-Free Vulnerability—CVE-2013-1675—93.2%
KEV—78Mozilla Firefox Information Disclosure Vulnerability—CVE-2022-26486—81.8%
KEV—75Mozilla Firefox Use-After-Free Vulnerability—