Published: 11/09/2023 Updated: 14/09/2023

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

Due to large allocation checks in Angle for glsl shaders being too lenient a buffer overflow could have occured when allocating too much private shader memory on mac OS. *This bug only affects Firefox on macOS. Other operating systems are unaffected.* This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox
mozilla firefox_esr
mozilla thunderbird

Description This CVE is under investigation by Red Hat Product Security ...

Mozilla Foundation Security Advisory 2023-38 Security Vulnerabilities fixed in Thunderbird 1152 Announced August 29, 2023 Impact high Products Thunderbird Fixed in Thunderbird 1152 ...

Mozilla Foundation Security Advisory 2023-34 Security Vulnerabilities fixed in Firefox 117 Announced August 29, 2023 Impact high Products Firefox Fixed in Firefox 117 ...

Mozilla Foundation Security Advisory 2023-36 Security Vulnerabilities fixed in Firefox ESR 1152 Announced August 29, 2023 Impact high Products Firefox ESR Fixed in Firefox ESR 1152 ...

CWE-120 https://www.mozilla.org/security/advisories/mfsa2023-34/https://www.mozilla.org/security/advisories/mfsa2023-36/https://bugzilla.mozilla.org/show_bug.cgi?id=1773874 https://www.mozilla.org/security/advisories/mfsa2023-38/https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2023-4582 https://www.mozilla.org/en-US/security/advisories/mfsa2023-38/

CVE-2023-4582

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect