CVE-2023-6859

Summary

A use-after-free condition affected TLS socket creation when under memory pressure. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefox ESRunspecified < 115.6affected
MozillaThunderbirdunspecified < 115.6affected
MozillaFirefoxunspecified < 121affected

Weaknesses

  • Use-after-free in PR_GetIdentitiesLayer

ADP Enrichment

CVE Program Container

Additional References

References