Lucene search

K

MozillaVULNRICHMENT:CVE-2023-6212

HistoryNov 21, 2023 - 2:28 p.m.

CVE-2023-6212

2023-11-2114:28:54

mozilla

github.com

2

memory safety bugs

firefox

thunderbird

vulnerability

arbitrary code

AI Score

7.4

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

Memory safety bugs present in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thunderbird < 115.5.

References

bugzilla.mozilla.org/buglist.cgi?bug_id=1658432%2C1820983%2C1829252%2C1856072%2C1856091%2C1859030%2C1860943%2C1862782

lists.debian.org/debian-lts-announce/2023/11/msg00017.html

lists.debian.org/debian-lts-announce/2023/11/msg00030.html

www.debian.org/security/2023/dsa-5561

www.mozilla.org/security/advisories/mfsa2023-49/

www.mozilla.org/security/advisories/mfsa2023-50/

www.mozilla.org/security/advisories/mfsa2023-52/

AI Score

7.4

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

Related for VULNRICHMENT:CVE-2023-6212

veracode1 ubuntucve1 nvd1 alpinelinux1 cvelist1 cve1 redhatcve1 prion1 debiancve1 openvas23 nessus62 rocky1 redhat20 osv12 oraclelinux6 kaspersky3 mageia2 almalinux4 debian4 slackware2 ubuntu3 amazon1 mozilla3 gentoo1