Lucene search
Veracode Vulnerability DatabaseVERACODE:42353HistoryAug 06, 2023 - 5:31 p.m.
Remote Code Execution (RCE)
2023-08-0617:31:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
remote code execution
firefox
vulnerability
webrender
memory handling
arbitrary code
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
66.4%
firefox is vulnerable to Remote Code Execution (RCE). This vulnerability occurs due to improper handling of memory in the WebRender component. An attacker can exploit this vulnerability to crash Firefox or execute arbitrary code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| firefox:sid | eq | 81.0-2 | |
| firefox:sid | eq | 83.0-1 | |
| firefox:sid | eq | 82.0.3-1 | |
| firefox:sid | eq | 81.0-2 | |
| firefox:sid | eq | 83.0-1 | |
| firefox:sid | eq | 82.0.3-1 |
Related
cnvd
cnvd
Mozilla Firefox Buffer Overflow Vulnerability (CNVD-2023-55349)
2023-06-28 00:00:00
cve
cve
CVE-2023-34417
2023-06-19 11:15:11
debiancve
debiancve
CVE-2023-34417
2023-06-19 11:15:11
ubuntucve
ubuntucve
CVE-2023-34417
2023-06-07 00:00:00
prion
prion
Memory corruption
2023-06-19 11:15:00
nvd
nvd
CVE-2023-34417
2023-06-19 11:15:11
cvelist
cvelist
CVE-2023-34417
2023-06-19 10:42:55
nessus
nessus
Mozilla Firefox < 114.0
2023-06-06 00:00:00
Ubuntu 20.04 LTS : Firefox vulnerabilities (USN-6143-1)
2023-06-07 00:00:00
Fedora 38 : firefox (2023-af4cfc9c3c)
2023-06-27 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2023-06-07 00:00:00
Firefox regressions
2023-06-13 00:00:00
Firefox regressions
2023-06-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6143-2)
2023-06-13 00:00:00
Ubuntu: Security Advisory (USN-6143-1)
2023-06-07 00:00:00
Mozilla Firefox Security Advisories (MFSA2023-18, MFSA2023-20) - Mac OS X
2023-06-08 00:00:00
osv
osv
firefox vulnerabilities
2023-06-07 05:06:03
firefox regressions
2023-06-21 03:27:06
firefox regressions
2023-06-13 03:09:23
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 114 — Mozilla
2023-06-06 00:00:00
kaspersky
kaspersky
KLA49378 Multiple vulnerabilities in Mozilla Firefox
2023-06-06 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple Vulnerabilities
2024-01-07 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
66.4%
Related for VERACODE:42353