When opening a Windows shortcut from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system. This bug only affects Firefox for Windows. Other operating systems are unaffected. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2022-30/#CVE-2022-36314