CVE-2023-4584

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-4584

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-4584.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-4584

Downstream

DLA-3553-1

DLA-3554-1

DSA-5485-1

DSA-5488-1

OESA-2023-1711

OESA-2023-1712

OESA-2023-1715

RHSA-2023:4945

RHSA-2023:4946

RHSA-2023:4947

RHSA-2023:4948

RHSA-2023:4949

RHSA-2023:4950

RHSA-2023:4951

RHSA-2023:4952

RHSA-2023:4954

RHSA-2023:4955

RHSA-2023:4956

RHSA-2023:4957

RHSA-2023:4958

RHSA-2023:4959

RHSA-2023:5019

SUSE-SU-2023:3519-1

SUSE-SU-2023:3559-1

SUSE-SU-2023:3562-1

SUSE-SU-2023:3664-1

UBUNTU-CVE-2023-4584

USN-6320-1

USN-6368-1

openSUSE-SU-2024:13176-1

openSUSE-SU-2024:13196-1

openSUSE-SU-2024:13197-1

openSUSE-SU-2024:13202-1

openSUSE-SU-2024:14572-1

Related

Published

2023-09-11T09:15:09Z

Modified

2025-08-09T19:01:27Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Memory safety bugs present in Firefox 116, Firefox ESR 102.14, Firefox ESR 115.1, Thunderbird 102.14, and Thunderbird 115.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 117, Firefox ESR < 102.15, Firefox ESR < 115.2, Thunderbird < 102.15, and Thunderbird < 115.2.

References

Affected packages