CVE-2022-0517

Published: 2022-12-22T20:15Z

Last Modified: 2024-11-21T06:38Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Mozilla VPN can load an OpenSSL configuration file from an unsecured directory. A user or attacker with limited privileges could leverage this to launch arbitrary code with SYSTEM privilege. This vulnerability affects Mozilla VPN < 2.7.1. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt