VDB

CISA-2023-25751

CISA-2023-25751 PUBLISHED

Reported by mozilla · Published June 2, 2023

Sometimes, when invalidating JIT code while following an iterator, the newly generated code could be overwritten incorrectly. This could lead to a potentially exploitable crash. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.

Affected Products

VendorProductVersions
MozillaFirefoxunspecified
MozillaFirefox ESRunspecified
MozillaThunderbirdunspecified
MozillaFirefoxunspecified, unspecified
MozillaThunderbird*, unspecified
MozillaFirefox ESRunspecified, unspecified

Timeline

  • Jun 2, 2023 CVE Published
  • Jan 9, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›