CVE-2023-6213
First published: Tue Nov 21 2023(Updated: )
Memory safety bugs present in Firefox 119. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 120.
Credit: security@mozilla.org security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ubuntu/firefox | <120.0+ | 120.0+ |
| Mozilla Firefox | <120 | 120 |
| Mozilla Firefox | <120.0 | |
| debian/firefox | 123.0-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.mozilla.org/buglist.cgi?bug_id=1849265%2C1851118%2C1854911
- https://www.mozilla.org/security/advisories/mfsa2023-49/
- https://security.gentoo.org/glsa/202401-10
- https://launchpad.net/bugs/cve/CVE-2023-6213
- https://www.mozilla.org/en-US/security/advisories/mfsa2023-49/
- https://www.mozilla.org/en-US/security/advisories/mfsa2023-49/#CVE-2023-6213
- https://security-tracker.debian.org/tracker/CVE-2023-6213
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6213
- https://ubuntu.com/security/notices/USN-6509-1
- https://nvd.nist.gov/vuln/detail/CVE-2023-6213
- https://ubuntu.com/security/CVE-2023-6213
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID for the memory safety bugs in Firefox?
The vulnerability ID for the memory safety bugs in Firefox is CVE-2023-6213.
What is the severity level of CVE-2023-6213?
CVE-2023-6213 has a severity level of high.
What does CVE-2023-6213 affect?
CVE-2023-6213 affects Firefox versions prior to 120.
What is the potential impact of CVE-2023-6213?
CVE-2023-6213 could allow an attacker to run arbitrary code.
Where can I find more information about CVE-2023-6213?
You can find more information about CVE-2023-6213 in the following references: [link 1](https://bugzilla.mozilla.org/buglist.cgi?bug_id=1849265%2C1851118%2C1854911), [link 2](https://www.mozilla.org/security/advisories/mfsa2023-49/), [link 3](https://www.mozilla.org/en-US/security/advisories/mfsa2023-49/).
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/launchpad-cve
- source/Launchpad
- agent/last-modified-date
- agent/author
- agent/references
- agent/weakness
- agent/severity
- agent/description
- collector/usn-cve
- source/Ubuntu
- agent/software-canonical-lookup
- agent/tags
- agent/event
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/mozilla-advisory
- source/Mozilla
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- collector/nvd-cve
- package-manager/ubuntu
- package-manager/debian
- vendor/mozilla
- canonical/mozilla firefox