Showing 1 - 19 of 19

CVE-2023-23599

Status Candidate

Overview

When copying a network request from the developer tools panel as a curl command the output was not being properly sanitized and could allow arbitrary commands to be hidden within. This vulnerability affects Firefox < 109, Thunderbird < 102.7, and Firefox ESR < 102.7.

Related Files

Gentoo Linux Security Advisory 202305-06: Posted May 3, 2023; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202305-6 - Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could result in arbitrary code execution. Versions less than 102.7.0:esr are affected.; tags | advisory, arbitrary, vulnerability, code execution; systems | linux, gentoo; advisories | CVE-2022-46871, CVE-2022-46872, CVE-2022-46873, CVE-2022-46874, CVE-2022-46875, CVE-2022-46877, CVE-2022-46878, CVE-2022-46879, CVE-2022-46880, CVE-2022-46881, CVE-2022-46882, CVE-2023-23597, CVE-2023-23598, CVE-2023-23599; SHA-256 | 3746ac6148cfdb063da8214b3525df9bb561fb7e0f7f70c9b0620ce82a045329; Download | Favorite | View

Ubuntu Security Notice USN-5816-2: Posted Feb 6, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5816-2 - USN-5816-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. Niklas Baumstark discovered that a compromised web child process of Firefox could disable web security opening restrictions, leading to a new child process being spawned within the file:// context. Tom Schuster discovered that Firefox was not performing a validation check on GTK drag data. An attacker could potentially exploits this to obtain sensitive information. Various other issues were also addressed.; tags | advisory, web, denial of service, arbitrary, spoof, vulnerability; systems | linux, ubuntu; advisories | CVE-2023-23597, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23604, CVE-2023-23606; SHA-256 | ac080c4b3790efbaf876e4fa1ba3505424a80943ca230f29f3ed885731cb5053; Download | Favorite | View

Red Hat Security Advisory 2023-0476-01: Posted Jan 27, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0476-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Issues addressed include a bypass vulnerability.; tags | advisory, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | 0afc6c6642370936f4775e1b86efe2ada7dfc12d3aba40556abc51cdd57d28f0; Download | Favorite | View

Red Hat Security Advisory 2023-0459-01: Posted Jan 26, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0459-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Issues addressed include a bypass vulnerability.; tags | advisory, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | 1413910a6d49bb3e2e957c5b7d5cee61db93fa62bcfced03fcbe6bf1682cdd41; Download | Favorite | View

Red Hat Security Advisory 2023-0462-01: Posted Jan 26, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0462-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Issues addressed include a bypass vulnerability.; tags | advisory, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | 900a2eb8a744c9b0969dc895e814b97b4a7a490a46b24b9c37744c9698dfeba6; Download | Favorite | View

Red Hat Security Advisory 2023-0461-01: Posted Jan 26, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0461-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Issues addressed include a bypass vulnerability.; tags | advisory, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | 45ffdeee0a2a4c54b776325ef84fa7fc38475f32b241f3fa42096b1facb950e8; Download | Favorite | View

Red Hat Security Advisory 2023-0460-01: Posted Jan 26, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0460-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Issues addressed include a bypass vulnerability.; tags | advisory, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | ad89306a3f510622532078d56271829abadf05a95260d4ab49d4084d68f8692f; Download | Favorite | View

Red Hat Security Advisory 2023-0463-01: Posted Jan 26, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0463-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Issues addressed include a bypass vulnerability.; tags | advisory, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | 7ee3c08aab6dfb59acd387b2ec7680e6598aa97efca653a3119cb87e84a61cc7; Download | Favorite | View

Red Hat Security Advisory 2023-0456-01: Posted Jan 26, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0456-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Issues addressed include a bypass vulnerability.; tags | advisory, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | ce0d3bb57879350e0042e6f23b2fd4dfa03644763ed442e3db48cb86660612e0; Download | Favorite | View

Red Hat Security Advisory 2023-0457-01: Posted Jan 26, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0457-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.7.1. Issues addressed include a bypass vulnerability.; tags | advisory, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | 99dff4b565a5f7283136a1511f4d4a8b5dbe92af58d5b4e9d874a5bbbaa08ce1; Download | Favorite | View

Red Hat Security Advisory 2023-0294-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0294-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.7.0 ESR. Issues addressed include a bypass vulnerability.; tags | advisory, web, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | ab4c27a56bfd50be18a850fba4a30e3a052a6b53070d078de5e0ebe47efa7d99; Download | Favorite | View

Red Hat Security Advisory 2023-0289-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0289-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.7.0 ESR. Issues addressed include a bypass vulnerability.; tags | advisory, web, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | f8a347e68750841335df8e115c8ea7b16322d3d5febd59dfe769fef4aaf8cab1; Download | Favorite | View

Red Hat Security Advisory 2023-0290-01: Posted Jan 24, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0290-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.7.0 ESR. Issues addressed include a bypass vulnerability.; tags | advisory, web, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | 883d4c7cbf458e7d07ae35c725fe10a741cb801d639bd372c4f5f711e48aa2c7; Download | Favorite | View

Ubuntu Security Notice USN-5816-1: Posted Jan 23, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5816-1 - Niklas Baumstark discovered that a compromised web child process of Firefox could disable web security opening restrictions, leading to a new child process being spawned within the file:// context. An attacker could potentially exploits this to obtain sensitive information. Tom Schuster discovered that Firefox was not performing a validation check on GTK drag data. An attacker could potentially exploits this to obtain sensitive information.; tags | advisory, web; systems | linux, ubuntu; advisories | CVE-2023-23597, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23604, CVE-2023-23606; SHA-256 | fc001643a6e5b7c0b2a05ecbee48a78fcb234cb56c2c6ca5347f8ad3e4ce89ab; Download | Favorite | View

Red Hat Security Advisory 2023-0288-01: Posted Jan 23, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0288-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.7.0 ESR. Issues addressed include a bypass vulnerability.; tags | advisory, web, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | 42ffb63a49095d8ee149f774976094f19968a0792fd304aa41ac09aef23cbf7c; Download | Favorite | View

Red Hat Security Advisory 2023-0285-01: Posted Jan 23, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0285-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.7.0 ESR. Issues addressed include a bypass vulnerability.; tags | advisory, web, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | 3b1592820bbef193d075e1f870ea6136f7164b3d9d1035ab9b0a4ed30b84d808; Download | Favorite | View

Red Hat Security Advisory 2023-0286-01: Posted Jan 23, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0286-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.7.0 ESR. Issues addressed include a bypass vulnerability.; tags | advisory, web, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | a37de55d70917803971d4d395a27286d31189d6db7e26297aeb1a6c1aa260d80; Download | Favorite | View

Red Hat Security Advisory 2023-0295-01: Posted Jan 23, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0295-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.7.0 ESR. Issues addressed include a bypass vulnerability.; tags | advisory, web, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | f885933cc426c44b869b00f992c2be8404a34f40a48bdb337b1dc4cca61cd2e3; Download | Favorite | View

Red Hat Security Advisory 2023-0296-01: Posted Jan 23, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-0296-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.7.0 ESR. Issues addressed include a bypass vulnerability.; tags | advisory, web, bypass; systems | linux, redhat; advisories | CVE-2022-46871, CVE-2022-46877, CVE-2023-23598, CVE-2023-23599, CVE-2023-23601, CVE-2023-23602, CVE-2023-23603, CVE-2023-23605; SHA-256 | f131ce619ab7f571bc3f1cad93ca9f7c57b463c9f6830ee5a7c65cb9cb0d6fe2; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 293 files
Ubuntu 64 files
Debian 22 files
Gentoo 8 files
Google Security Research 7 files
LiquidWorm 6 files
Apple 5 files
Jann Horn 3 files
Spencer McIntyre 3 files
Milad Karimi 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,175)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,140)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,480)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,022)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2023-23599

Overview

Related Files

File Archive:

December 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems