9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.004 Low
EPSS
Percentile
73.4%
firefox and thunderbird are vulnerable to Remote Code Execution (RCE). These vulnerabilities occur due to improper handling of memory in the Firefox web browser. An attacker can exploit these vulnerabilities to crash Firefox or execute arbitrary code.
bugzilla.mozilla.org/buglist.cgi?bug_id=1752703%2C1818394%2C1826875%2C1827340%2C1827655%2C1828065%2C1830190%2C1830206%2C1830795%2C1833339
security-tracker.debian.org/tracker/CVE-2023-34416
security.gentoo.org/glsa/202312-03
security.gentoo.org/glsa/202401-10
www.mozilla.org/security/advisories/mfsa2023-19/
www.mozilla.org/security/advisories/mfsa2023-20/
www.mozilla.org/security/advisories/mfsa2023-21/