CVE-2023-4582

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Sep 11, 2023

Updated: Sep 14, 2023

CWE ID 120

Summary

CVE-2023-4582 is a buffer overflow vulnerability affecting Angle, a graphics library used by Firefox on macOS for rendering WebGL and OpenGL ES 2.0 shaders. The issue stems from overly permissive memory allocation checks, allowing an attacker to allocate excess private shader memory. This vulnerability endangers Firefox versions below 117, Firefox ESR below 115.2, and Thunderbird below 115.2 on macOS, leaving other platforms unaffected.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sfazZL
https://www.cve.org/CVERecord?id=CVE-2023-4582
https://nvd.nist.gov/vuln/detail/CVE-2023-4582

Back to Vulnerability Database

CVE-2023-4582

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations