VDB
RHSA-2023%3A5437
RHSA-2023%3A5437
PUBLISHED
CVSS 8.800000190734863 HIGH
An update for firefox is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat Enterprise Linux AppStream E4S (v.8.4) | ||
| Red Hat Enterprise Linux AppStream TUS (v.8.4) | ||
| Red Hat Enterprise Linux AppStream AUS (v.8.4) | ||
| firefox |
Timeline
- Oct 4, 2023 CVE Published
- Nov 23, 2024 CVE Updated
- Apr 28, 2025 PoC Published
- Apr 3, 2026 Distribution Patch
- Apr 3, 2026 Distribution Patch
- Apr 3, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2023:5437 advisory
- https://access.redhat.com/security/updates/classification/#important url
- https://bugzilla.redhat.com/show_bug.cgi?id=2222652 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2240893 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2240894 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2240896 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2241191 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5437.json advisory