CVE-2023-4047

CVSS 3.0 Score 7.8 of 10 (high)

Details

Published Aug 1, 2023

Updated: Aug 9, 2023

CWE ID 129

Summary

CVE-2023-4047 is a vulnerability affecting Firefox versions below 116, Firefox ESR below 102.14, and Firefox ESR below 115.1. This issue arises from a bug in Firefox's popup notifications delay calculation. An attacker may exploit this vulnerability by tricking a user into granting permissions at an inopportune moment, when the user might not have intended to do so. The exact nature of this exploit remains unclear, but it highlights the importance of keeping web browsers updated to protect against potential security risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sWGzA9
https://www.cve.org/CVERecord?id=CVE-2023-4047
https://nvd.nist.gov/vuln/detail/CVE-2023-4047

Back to Vulnerability Database

CVE-2023-4047

CVSS 3.0 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations