CVE-2023-37208

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 5, 2023
Updated: Jul 12, 2023

Summary

CVE-2023-37208 is a vulnerability affecting Firefox versions below 115, Firefox ESR below 102.13, and Thunderbird below 102.13. Malicious Diagcab files can bypass Firefox's warning system, potentially exposing users to code injections and other cyber threats. The browser fails to adequately alert users of potential risks associated with these files, increasing the likelihood of successful attacks. This issue highlights the importance of timely software updates to mitigate known vulnerabilities and protect against potential cyberattacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share