CVE-2023-1945

Summary

Unexpected data returned from the Safe Browsing API could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 102.10 and Firefox ESR < 102.10.

Affected Software

VendorProductVersion RangeStatus
MozillaThunderbirdunspecified < 102.10affected
MozillaFirefox ESRunspecified < 102.10affected

Weaknesses

  • Memory Corruption in Safe Browsing Code

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References