CVE-2023-5170
CVSS v3.1
7.4 (High)
EPSS
0.07 % (31th)
Affected Products
1
Advisories
3
In canvas rendering, a compromised content process could have caused a surface to change unexpectedly, leading to a memory leak of a privileged process. This memory leak could be used to effect a sandbox escape if the correct data was leaked. This vulnerability affects Firefox < 118.
Weaknesses
- CWE-401
- Missing Release of Memory after Effective Lifetime
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2023-09-27 15:19:42
(11 months ago) - Updated Date
-
2024-01-07 11:15:13
(8 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...