Published: 25/10/2023 Updated: 02/11/2023

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 0

The executable file warning was not presented when downloading .msix, .msixbundle, .appx, and .appxbundle files, which can run commands on a user's computer. *Note: This issue only affected Windows operating systems. Other operating systems are unaffected.* This vulnerability affects Firefox < 119, Firefox ESR < 115.4, and Thunderbird < 115.4.1.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox
mozilla firefox_esr
mozilla thunderbird

Mozilla Foundation Security Advisory 2023-47 Security Vulnerabilities fixed in Thunderbird 1154 Announced October 24, 2023 Impact high Products Thunderbird Fixed in Thunderbird 1154 ...

Mozilla Foundation Security Advisory 2023-46 Security Vulnerabilities fixed in Firefox ESR 1154 Announced October 24, 2023 Impact high Products Firefox ESR Fixed in Firefox ESR 1154 ...

Mozilla Foundation Security Advisory 2023-45 Security Vulnerabilities fixed in Firefox 119 Announced October 24, 2023 Impact high Products Firefox Fixed in Firefox 119 ...

NVD-CWE-noinfo https://www.mozilla.org/security/advisories/mfsa2023-45/https://www.mozilla.org/security/advisories/mfsa2023-47/https://www.mozilla.org/security/advisories/mfsa2023-46/https://bugzilla.mozilla.org/show_bug.cgi?id=1847180 https://nvd.nist.gov https://www.mozilla.org/en-US/security/advisories/mfsa2023-47/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-5727

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect