CVE-2023-4048

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 1, 2023
Updated: Aug 11, 2023
CWE ID 125

Summary

CVE-2023-4048 is a vulnerability affecting Firefox browsers, including versions below 116, 102.14 ESR, and 115.1 ESR. This issue involves an out-of-bounds read during HTML parsing using DOMParser. In situations with low memory, this flaw could lead to a crash that potentially allows an attacker to execute malicious code. The vulnerability poses a significant risk due to its impact on the commonly used Firefox browsers.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share