Lucene search
Ubuntu.comUB:CVE-2023-25750HistoryMar 15, 2023 - 12:00 a.m.
CVE-2023-25750
2023-03-1500:00:00
ubuntu.com
ubuntu.com
9
serviceworker
offline cache
leak
vulnerability
private browsing
firefox < 111
firefox snap
ubuntu 22.04
mozjs
spidermonkey
javascript engine
unix
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
0.001 Low
EPSS
Percentile
30.6%
Under certain circumstances, a ServiceWorker’s offline cache may have
leaked to the file system when using private browsing mode. This
vulnerability affects Firefox < 111.
Notes
| Author | Note |
|---|---|
| tyhicks | mozjs contains a copy of the SpiderMonkey JavaScript engine |
| mdeslaur | starting with Ubuntu 22.04, the firefox package is just a script that installs the Firefox snap |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | firefox | < 111.0+build2-0ubuntu0.18.04.1 | UNKNOWN |
| ubuntu | 20.04 | noarch | firefox | < 111.0+build2-0ubuntu0.20.04.1 | UNKNOWN |
| ubuntu | 18.04 | noarch | mozjs38 | < any | UNKNOWN |
| ubuntu | 18.04 | noarch | mozjs52 | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | mozjs52 | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | mozjs68 | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | mozjs78 | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | mozjs91 | < any | UNKNOWN |
Related
cve
cve
CVE-2023-25750
2023-06-02 17:15:11
debiancve
debiancve
CVE-2023-25750
2023-06-02 17:15:11
nvd
nvd
CVE-2023-25750
2023-06-02 17:15:11
veracode
veracode
Denial Of Service (DoS)
2023-03-24 15:40:44
prion
prion
Design/Logic Flaw
2023-06-02 17:15:00
cvelist
cvelist
CVE-2023-25750
2023-06-02 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5954-2)
2023-03-28 00:00:00
Ubuntu: Security Advisory (USN-5954-1)
2023-03-16 00:00:00
Mozilla Firefox Security Advisory (MFSA2023-09) - Linux
2023-03-14 00:00:00
osv
osv
firefox vulnerabilities
2023-03-15 11:30:03
firefox regressions
2023-03-27 03:05:28
ubuntu
ubuntu
Firefox vulnerabilities
2023-03-15 00:00:00
Firefox regressions
2023-03-27 00:00:00
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-5954-1)
2023-03-15 00:00:00
SUSE SLES15 Security Update : MozillaFirefox (SUSE-SU-2023:0728-1)
2023-03-15 00:00:00
Mozilla Firefox < 111.0
2023-03-14 00:00:00
kaspersky
kaspersky
KLA48551 Multiple vulnerabilities in Mozilla Firefox
2023-03-14 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 111 — Mozilla
2023-03-14 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple Vulnerabilities
2023-05-30 00:00:00
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
0.001 Low
EPSS
Percentile
30.6%
Related for UB:CVE-2023-25750