Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv3

CVE-2023-6868

Published: 19/12/2023 Updated: 02/02/2024
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Firefox

Vulnerability Summary

In some instances, the user-agent would allow push requests which lacked a valid VAPID even though the push manager subscription defined one. This could allow empty messages to be sent from unauthorized parties. *This bug only affects Firefox on Android.* This vulnerability affects Firefox < 121.

Vulnerable Product Search on Vulmon Subscribe to Product

mozilla firefox

Vendor Advisories

Mozilla: Security Vulnerabilities fixed in Firefox 121
Mozilla Foundation Security Advisory 2023-56 Security Vulnerabilities fixed in Firefox 121 Announced December 19, 2023 Impact high Products Firefox Fixed in Firefox 121 ...

References

NVD-CWE-noinfohttps://bugzilla.mozilla.org/show_bug.cgi?id=1865488https://www.mozilla.org/security/advisories/mfsa2023-56/https://security.gentoo.org/glsa/202401-10https://nvd.nist.govhttps://www.mozilla.org/en-US/security/advisories/mfsa2023-56/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028memory leaklog injectionCVE-2024-3400CVE-2022-48695CVE-2022-48675CVE-2024-34487CVE-2024-33792spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook