CVE-2023-25752 in Thunderbirdinfo

Summary

by MITRE • 06/02/2023

When accessing throttled streams, the count of available bytes needed to be checked in the calling function to be within bounds. This may have lead future code to be incorrect and vulnerable. This vulnerability affects Firefox < 111, Firefox ESR < 102.9, and Thunderbird < 102.9.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservation

02/13/2023

Disclosure

06/02/2023

Moderation

accepted

Entry

Relate

show

CPE

ready

CWE

CWE-119 (confirmed)

CVSS

6.3 (VulDB)

EPSS

0.00610

KEV

Activities

very low

Sector

Education, Finance, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2023-25752
NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-25752
CVE Details	https://www.cvedetails.com/cve/CVE-2023-25752/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!