CVE-2023-28163

Summary

When downloading files through the Save As dialog on Windows with suggested filenames containing environment variable names, Windows would have resolved those in the context of the current user. <br>This bug only affects Firefox on Windows. Other versions of Firefox are unaffected.. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 111affected
MozillaFirefox ESRunspecified < 102.9affected
MozillaThunderbirdunspecified < 102.9affected

Weaknesses

  • Windows Save As dialog resolved environment variables

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

Additional References

References