CVE-2023-25746

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-25746

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-25746.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-25746

Downstream

DEBIAN-CVE-2023-25746

DLA-3319-1

DLA-3324-1

DSA-5350-1

DSA-5355-1

RHSA-2023:0805

RHSA-2023:0806

RHSA-2023:0807

RHSA-2023:0808

RHSA-2023:0809

RHSA-2023:0810

RHSA-2023:0811

RHSA-2023:0812

RHSA-2023:0817

RHSA-2023:0818

RHSA-2023:0819

RHSA-2023:0820

RHSA-2023:0821

RHSA-2023:0822

RHSA-2023:0823

RHSA-2023:0824

SUSE-SU-2023:0461-1

SUSE-SU-2023:0466-1

SUSE-SU-2023:0469-1

SUSE-SU-2023:0599-1

UBUNTU-CVE-2023-25746

USN-5943-1

openSUSE-SU-2024:12702-1

openSUSE-SU-2024:12713-1

Related

Published

2023-06-02T17:15:11Z

Modified

2025-08-09T19:01:26Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Memory safety bugs present in Firefox ESR 102.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 102.8 and Firefox ESR < 102.8.

References

Affected packages