VDB

CISA-2023-4056

CISA-2023-4056 PUBLISHED

Reported by mozilla · Published August 1, 2023

Memory safety bugs present in Firefox 115, Firefox ESR 115.0, Firefox ESR 102.13, Thunderbird 115.0, and Thunderbird 102.13. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.

Affected Products

VendorProductVersions
MozillaFirefoxunspecified
MozillaFirefox ESRunspecified
MozillaFirefox ESRunspecified
mozillafirefox0, 0
mozillafirefox_esr0, 0, 0
MozillaFirefox ESR*, unspecified, unspecified
MozillaFirefoxunspecified, *

Timeline

  • Aug 1, 2023 CVE Published
  • Oct 22, 2024 CVE Updated
  • Apr 26, 2026 Distribution Patch
  • Apr 26, 2026 Distribution Patch
Open in Interactive Console →
$ Console Community · 100/wk Open console ›