CVE-2023-5169
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Sep 27, 2023
Updated: Oct 12, 2023
CWE ID 787
Summary
CVE-2023-5169 is a newly disclosed vulnerability that affects Firefox versions below 118, Firefox ESR below 115.3, and Thunderbird below 115.3. This issue arises when a compromised content process introduces malicious data into a `PathRecording`, resulting in an out-of-bounds write. Consequently, this can lead to a crash in a privileged process, potentially enabling an attacker to gain unauthorized access or execute malicious code.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share