CVE-2023-4048

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 1, 2023

Updated: Aug 11, 2023

CWE ID 125

Summary

CVE-2023-4048 is a vulnerability affecting Firefox browsers, including versions below 116, 102.14 ESR, and 115.1 ESR. This issue involves an out-of-bounds read during HTML parsing using DOMParser. In situations with low memory, this flaw could lead to a crash that potentially allows an attacker to execute malicious code. The vulnerability poses a significant risk due to its impact on the commonly used Firefox browsers.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sL_9XQ
https://www.cve.org/CVERecord?id=CVE-2023-4048
https://nvd.nist.gov/vuln/detail/CVE-2023-4048

Back to Vulnerability Database

CVE-2023-4048

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations