Firefox Vulnerability

Firefox Vulnerability

Memory safety bugs present in Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2.

Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 118, Firefox ESR < 115.3, and Thunderbird < 115.3.

Affected Systems

Firefox < 118.0
Firefox ESR < 115.3
Firefox Thunderbird < 115.3

IoC’s

-

Recommended Solution(s)

Up To Firefox 118, Up To Firefox ESR 115.3, Up To Firefox ThunderBird 115.3

CVE / CWE

CVE-2023-5176

Related Website(s)

• https://nvd.nist.gov/vuln/detail/CVE-2023-5176
• https://www.mozilla.org/en-US/security/advisories/mfsa2023-41/

* Vulnerabilities with a CVSS 3.1 score between 7.0 and 8.9 are evaluated to be “high” whereas vulnerabilities with a CVSS 3.1 score between 9.0 and 10.0 are evaluated to be “critical”.