CVE-2023-25736

Reference Links

• https://bugzilla.mozilla.org/show_bug.cgi?id=1811331
• https://www.mozilla.org/security/advisories/mfsa2023-05/
• https://launchpad.net/bugs/cve/CVE-2023-25736
• https://www.mozilla.org/en-US/security/advisories/mfsa2023-05/
• https://www.mozilla.org/en-US/security/advisories/mfsa2023-05/#CVE-2023-25745
• https://www.mozilla.org/en-US/security/advisories/mfsa2023-05/#CVE-2023-25736
• https://security-tracker.debian.org/tracker/CVE-2023-25736
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25736
• https://nvd.nist.gov/vuln/detail/CVE-2023-25736
• https://ubuntu.com/security/CVE-2023-25736

Parent vulnerabilities

(Appears in the following advisories)

• MFSA2023-05

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2023-25728
• CVE-2023-25730
• CVE-2023-25743
• CVE-2023-0767
• CVE-2023-25735
• CVE-2023-25737
• CVE-2023-25738
• CVE-2023-25739
• CVE-2023-25729
• CVE-2023-25732
• CVE-2023-25734
• CVE-2023-25740
• CVE-2023-25731
• CVE-2023-25733
• CVE-2023-25736
• CVE-2023-25741
• CVE-2023-25742
• CVE-2023-25744
• CVE-2023-25745

Frequently Asked Questions

• What is CVE-2023-25736?

  CVE-2023-25736 is a vulnerability in Firefox versions before 110 that allows an invalid downcast from `nsHTMLDocument` to `nsIContent` leading to undefined behavior.

• How does CVE-2023-25736 affect Firefox?

  CVE-2023-25736 affects Firefox versions before 110.

• What is the severity of CVE-2023-25736?

  The severity of CVE-2023-25736 is low.

• How can I fix CVE-2023-25736?

  To fix CVE-2023-25736, update Firefox to version 110 or newer.

• Where can I find more information about CVE-2023-25736?

  You can find more information about CVE-2023-25736 in the references provided: [link1](https://bugzilla.mozilla.org/show_bug.cgi?id=1811331), [link2](https://www.mozilla.org/security/advisories/mfsa2023-05/), [link3](https://launchpad.net/bugs/cve/CVE-2023-25736).