CVE-2022-26485 | Mozilla Firefox/Firefox ESR/Thunderbird XSLT Parameter use after free (mfsa2022-09)
A vulnerability classified as critical has been found in Mozilla Firefox, Firefox ESR and Thunderbird. This affects an unknown part of the component XSLT Parameter Handler. The manipulation leads to use after free.
This vulnerability is uniquely identified as CVE-2022-26485. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.