PT-2023-2860 · Mozilla+4 · Firefox+4

Andrew Mccreight

Publicado

2023-05-09

Atualizado

2025-04-03

CVE-2023-32216

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 113

Description The issue is related to memory safety bugs present in Firefox, which showed evidence of memory corruption. It is presumed that with enough effort, some of these bugs could have been exploited to run arbitrary code. The vulnerability can be exploited by a remote attacker using a specially crafted website, potentially allowing them to execute arbitrary code.

Recommendations For Firefox versions prior to 113, update to version 113 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable components until a patch is available.

Correção

Buffer Overflow

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119CWE-787

Identificadores relacionados

ALT-PU-2023-1773

ALT-PU-2023-5754

ALT-PU-2023-6436

ALT-PU-2024-14035

ALT-PU-2024-3614

ALT-PU-2024-4241

BDU:2023-02807

CVE-2023-32216

OESA-2025-1377

OESA-2025-1379

OPENSUSE-SU-2024:12920-1

OPENSUSE-SU-2024:14572-1

USN-6074-1

USN-6074-2

USN-6074-3

Produtos afetados

Alt Linux

Astra Linux

Firefox

Linuxmint

Ubuntu

PT-2023-2860 · Mozilla+4 · Firefox+4

CVE-2023-32216

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 1903