PT-2023-2860 · Mozilla+4 · Firefox+4

Andrew Mccreight

Published

2023-05-09

Updated

2025-04-03

CVE-2023-32216

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 113

Description The issue is related to memory safety bugs present in Firefox, which showed evidence of memory corruption. It is presumed that with enough effort, some of these bugs could have been exploited to run arbitrary code. The vulnerability can be exploited by a remote attacker using a specially crafted website, potentially allowing them to execute arbitrary code.

Recommendations For Firefox versions prior to 113, update to version 113 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable components until a patch is available.

Fix

Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-787

Related Identifiers

ALT-PU-2023-1773

ALT-PU-2023-5754

ALT-PU-2023-6436

ALT-PU-2024-14035

ALT-PU-2024-3614

ALT-PU-2024-4241

BDU:2023-02807

CVE-2023-32216

OESA-2025-1377

OESA-2025-1379

OPENSUSE-SU-2024:12920-1

OPENSUSE-SU-2024:14572-1

USN-6074-1

USN-6074-2

USN-6074-3

Affected Products

Alt Linux

Astra Linux

Firefox

Linuxmint

Ubuntu

PT-2023-2860 · Mozilla+4 · Firefox+4

CVE-2023-32216

Weakness Enumeration

Related Identifiers

Affected Products

References · 1903