VDB

CISA-2023-25742

CISA-2023-25742 PUBLISHED

Reported by mozilla · Published June 2, 2023

When importing a SPKI RSA public key as ECDSA P-256, the key would be handled incorrectly causing the tab to crash. This vulnerability affects Firefox < 110, Thunderbird < 102.8, and Firefox ESR < 102.8.

Affected Products

VendorProductVersions
MozillaFirefoxunspecified
MozillaThunderbirdunspecified
MozillaFirefox ESRunspecified
MozillaFirefoxunspecified, unspecified
MozillaThunderbirdunspecified, unspecified
MozillaFirefox ESR*, unspecified

Timeline

  • Jun 2, 2023 CVE Published
  • Jan 9, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›