Lucene search
MozillaCVELIST:CVE-2023-4576HistorySep 11, 2023 - 8:00 a.m.
CVE-2023-4576
2023-09-1108:00:51
mozilla
www.cve.org
windows
integer overflow
heap buffer overflow
sensitive data leak
sandbox escape
firefox
thunderbird
vulnerability
On Windows, an integer overflow could occur in RecordedSourceSurfaceCreation which resulted in a heap buffer overflow potentially leaking sensitive data that could have led to a sandbox escape.
This bug only affects Firefox on Windows. Other operating systems are unaffected. This vulnerability affects Firefox < 117, Firefox ESR < 102.15, Firefox ESR < 115.2, Thunderbird < 102.15, and Thunderbird < 115.2.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "117",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "102.15",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Firefox ESR",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "115.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "102.15",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Thunderbird",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "115.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Integer overflow
2023-09-11 09:15:00
alpinelinux
alpinelinux
CVE-2023-4576
2023-09-11 09:15:09
redhatcve
redhatcve
CVE-2023-4576
2023-08-30 10:15:42
cve
cve
CVE-2023-4576
2023-09-11 09:15:09
ubuntucve
ubuntucve
CVE-2023-4576
2023-09-11 00:00:00
nvd
nvd
CVE-2023-4576
2023-09-11 09:15:09
debiancve
debiancve
CVE-2023-4576
2023-09-11 09:15:09
kaspersky
kaspersky
KLA52662 Multiple vulnerabilities in Mozilla Firefox ESR
2023-08-29 00:00:00
KLA52674 Multiple vulnerabilities in Mozilla Thunderbird
2023-08-29 00:00:00
KLA52675 Multiple vulnerabilities in Mozilla Thunderbird
2023-08-29 00:00:00
nessus
nessus
Mozilla Firefox ESR < 102.15
2023-08-29 00:00:00
Mozilla Firefox ESR < 102.15
2023-08-29 00:00:00
Mozilla Thunderbird < 102.15
2023-08-31 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 102.15 — Mozilla
2023-08-29 00:00:00
Security Vulnerabilities fixed in Thunderbird 102.15 — Mozilla
2023-08-29 00:00:00
Security Vulnerabilities fixed in Firefox 117 — Mozilla
2023-08-29 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:3559-1)
2023-09-11 00:00:00
openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2023:3519-1)
2024-03-04 00:00:00
Mozilla Firefox Security Advisories (MFSA2023-32, MFSA2023-36) - Windows
2023-08-30 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2023-08-30 22:09:54
redos
redos
ROS-20230919-01
2023-09-19 00:00:00
ROS-20230919-02
2023-09-19 00:00:00
mageia
mageia
Updated firefox/thunderbird packages fix security vulnerability
2023-09-25 01:16:18
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2024-02-19 00:00:00
ibm
ibm