Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-5725HistoryOct 25, 2023 - 6:17 p.m.
CVE-2023-5725
2023-10-2518:17:44
Debian Security Bug Tracker
security-tracker.debian.org
11
firefox
thunderbird
webextension
url
data collection
vulnerability
0.001 Low
EPSS
Percentile
28.7%
A malicious installed WebExtension could open arbitrary URLs, which under the right circumstance could be leveraged to collect sensitive user data. This vulnerability affects Firefox < 119, Firefox ESR < 115.4, and Thunderbird < 115.4.1.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | firefox | < 119.0-1 | firefox_119.0-1_all.deb |
| Debian | 12 | all | firefox-esr | < 115.4.0esr-1~deb12u1 | firefox-esr_115.4.0esr-1~deb12u1_all.deb |
| Debian | 11 | all | firefox-esr | < 115.4.0esr-1~deb11u1 | firefox-esr_115.4.0esr-1~deb11u1_all.deb |
| Debian | 10 | all | firefox-esr | < 115.4.0esr-1~deb10u1 | firefox-esr_115.4.0esr-1~deb10u1_all.deb |
| Debian | 999 | all | firefox-esr | < 115.4.0esr-1 | firefox-esr_115.4.0esr-1_all.deb |
| Debian | 13 | all | firefox-esr | < 115.4.0esr-1 | firefox-esr_115.4.0esr-1_all.deb |
| Debian | 12 | all | thunderbird | < 1:115.4.1-1~deb12u1 | thunderbird_1:115.4.1-1~deb12u1_all.deb |
| Debian | 11 | all | thunderbird | < 1:115.4.1-1~deb11u1 | thunderbird_1:115.4.1-1~deb11u1_all.deb |
| Debian | 10 | all | thunderbird | < 1:115.4.1-1~deb10u1 | thunderbird_1:115.4.1-1~deb10u1_all.deb |
| Debian | 999 | all | thunderbird | < 1:115.4.1-1 | thunderbird_1:115.4.1-1_all.deb |
Related
redhatcve
redhatcve
CVE-2023-5725
2023-10-24 18:28:30
cvelist
cvelist
CVE-2023-5725
2023-10-24 12:47:11
cve
cve
CVE-2023-5725
2023-10-25 18:17:44
prion
prion
Design/Logic Flaw
2023-10-25 18:17:00
veracode
veracode
Open Redirect
2023-10-27 21:05:12
alpinelinux
alpinelinux
CVE-2023-5725
2023-10-25 18:17:44
ubuntucve
ubuntucve
CVE-2023-5725
2023-10-25 00:00:00
nessus
nessus
Debian DSA-5535-1 : firefox-esr - security update
2023-10-25 00:00:00
Amazon Linux 2 : thunderbird (ALAS-2023-2334)
2023-11-15 00:00:00
Debian DSA-5538-1 : thunderbird - security update
2023-10-28 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3637-1)
2023-10-30 00:00:00
Debian: Security Advisory (DSA-5535-1)
2023-10-26 00:00:00
Debian: Security Advisory (DLA-3632-1)
2023-10-30 00:00:00
amazon
amazon
Important: thunderbird
2023-11-09 19:19:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2023-11-07 02:08:32
Updated nss and firefox packages fix security vulnerabilities
2023-11-07 02:08:32
almalinux
almalinux
Important: thunderbird security update
2023-10-30 00:00:00
Important: firefox security update
2023-10-30 00:00:00
Important: thunderbird security update
2023-10-30 00:00:00
osv
osv
Important: firefox security update
2023-10-30 00:00:00
Important: thunderbird security update
2023-10-30 00:00:00
Important: firefox security update
2023-11-11 23:00:15
redhat
redhat
(RHSA-2023:6185) Important: firefox security update
2023-10-30 16:27:39
(RHSA-2023:6188) Important: firefox security update
2023-10-30 16:31:18
(RHSA-2023:6187) Important: firefox security update
2023-10-30 16:30:34
oraclelinux
oraclelinux
firefox security update
2023-10-31 00:00:00
thunderbird security update
2023-10-31 00:00:00
thunderbird security update
2023-10-31 00:00:00
rocky
rocky
firefox security update
2023-11-11 23:00:15
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 115.4 — Mozilla
2023-10-24 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.4.1 — Mozilla
2023-10-24 00:00:00
Security Vulnerabilities fixed in Firefox 119 — Mozilla
2023-10-24 00:00:00
kaspersky
kaspersky
KLA61569 Multiple vulnerabilities in Mozilla Firefox ESR
2023-10-24 00:00:00
KLA61570 Multiple vulnerabilities in Mozilla Thunderbird
2023-10-24 00:00:00
KLA61568 Multiple vulnerabilities in Mozilla Firefox
2023-10-24 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2023-10-24 22:27:04
[slackware-security] mozilla-thunderbird
2023-10-26 20:00:50
ubuntu
ubuntu
Firefox regressions
2023-11-14 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2024-02-19 00:00:00
ibm
ibm