China National Vulnerability DatabaseCNVD-2023-05208

HistoryDec 30, 2022 - 12:00 a.m.

Vulners
/
Cnvd
/
Mozilla Firefox Resource Management Error Vulnerability (CNVD-2023-05208)

Mozilla Firefox Resource Management Error Vulnerability (CNVD-2023-05208)

2022-12-3000:00:00

China National Vulnerability Database

www.cnvd.org.cn

mozilla foundation

web browser

resource management

vulnerability

audio receiver

exploitable crash

attacker

browser crash

0.001 Low

EPSS

Percentile

48.9%

JSON

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the U.S. A resource management error vulnerability exists in Mozilla Firefox, which stems from a competing condition that may result from building an audio receiver when playing audio files and closing windows. This could result in use after release, leading to a potentially exploitable crash. An attacker could exploit the vulnerability to cause the browser to crash.

CPENameOperatorVersion
mozilla firefoxlt96.0
mozilla firefox esrlt91.5
mozilla thunderbirdlt91.5

Name	Operator	Version
mozilla firefox	lt	96.0
mozilla firefox esr	lt	91.5
mozilla thunderbird	lt	91.5

alpinelinux 1

cve 1

veracode 1

cvelist 1

prion 1

ubuntucve 1

debiancve 1

redhatcve 1

nvd 1

nessus 49

centos 2

oraclelinux 4

almalinux 2

openvas 23

redhat 10

osv 10

debian 4

mageia 2

rocky 2

redos 1

mozilla 3

kaspersky 3

altlinux 2

suse 2

ubuntu 3

hivepro 1

amazon 2

ibm 2

gentoo 2

alpinelinux

CVE-2022-22737

2022-12-22 20:15:14

cve

CVE-2022-22737

2022-12-22 20:15:14

veracode

Denial Of Service (DoS)

2022-01-14 05:53:38

cvelist

CVE-2022-22737

2022-12-22 00:00:00

prion

Race condition

2022-12-22 20:15:00

ubuntucve

CVE-2022-22737

2022-01-13 00:00:00

debiancve

CVE-2022-22737

2022-12-22 20:15:14

redhatcve

CVE-2022-22737

2022-01-12 23:23:09

nvd

CVE-2022-22737

2022-12-22 20:15:14

nessus

Scientific Linux Security Update : firefox on SL7.x i686/x86_64 (2022:0124)

2022-01-13 00:00:00

RHEL 8 : firefox (RHSA-2022:0132)

2022-01-13 00:00:00

AlmaLinux 8 : firefox (ALSA-2022:0130)

2022-03-12 00:00:00

centos

firefox security update

2022-01-18 13:44:03

thunderbird security update

2022-01-18 13:44:49

oraclelinux

firefox security update

2022-01-12 00:00:00

firefox security update

2022-01-13 00:00:00

thunderbird security update

2022-01-13 00:00:00

almalinux

Important: firefox security update

2022-01-12 11:30:14

Important: thunderbird security update

2022-01-12 11:29:46

openvas

Mageia: Security Advisory (MGASA-2022-0019)

2022-01-28 00:00:00

Mozilla Firefox ESR Security Advisories (MFSA2021-55, MFSA2022-03) - Mac OS X

2022-01-14 00:00:00

Mageia: Security Advisory (MGASA-2022-0013)

2022-01-28 00:00:00

redhat

(RHSA-2022:0125) Important: firefox security update

2022-01-12 11:26:32

(RHSA-2022:0132) Important: firefox security update

2022-01-12 11:30:56

(RHSA-2022:0129) Important: thunderbird security update

2022-01-12 11:29:46

osv

Important: thunderbird security update

2022-01-12 11:29:46

firefox-esr - security update

2022-01-16 00:00:00

Important: firefox security update

2022-01-12 11:30:14

debian

[SECURITY] [DLA 2881-1] thunderbird security update

2022-01-16 10:56:46

[SECURITY] [DSA 5045-1] thunderbird security update

2022-01-14 18:25:24

[SECURITY] [DSA 5044-1] firefox-esr security update

2022-01-13 18:47:15

mageia

Updated nss and firefox packages fix security vulnerabilities

2022-01-12 02:22:28

Updated thunderbird packages fix security vulnerability

2022-01-16 23:39:09

rocky

thunderbird security update

2022-01-12 11:29:46

firefox security update

2022-01-12 11:30:14

redos

ROS-20220114-01

2022-01-14 00:00:00

mozilla

Security Vulnerabilities fixed in Firefox ESR 91.5 — Mozilla

2022-01-11 00:00:00

Security Vulnerabilities fixed in Thunderbird 91.5 — Mozilla

2022-01-11 00:00:00

Security Vulnerabilities fixed in Firefox 96 — Mozilla

2022-01-11 00:00:00

kaspersky

KLA12417 Multiple vulnerabilities in Mozilla Thunderbird

2022-01-11 00:00:00

KLA12416 Multiple vulnerabilities in Mozilla Firefox ESR

2022-01-11 00:00:00

KLA12415 Multiple vulnerabilities in Mozilla Firefox

2022-01-11 00:00:00

altlinux

Security fix for the ALT Linux 10 package thunderbird version 91.5.0-alt1

2022-01-20 00:00:00

Security fix for the ALT Linux 10 package firefox-esr version 91.5.0-alt1

2022-01-19 00:00:00

suse

Security update for MozillaFirefox (moderate)

2022-05-18 00:00:00

Security update for MozillaThunderbird (important)

2022-01-26 00:00:00

ubuntu

Firefox vulnerabilities

2022-01-13 00:00:00

Thunderbird vulnerabilities

2022-01-21 00:00:00

Thunderbird vulnerabilities

2022-01-21 00:00:00

hivepro

Mozilla Firefox patches multiple vulnerabilities

2022-01-12 07:57:08

amazon

Important: thunderbird

2022-03-07 23:34:00

Important: thunderbird

2022-07-06 03:17:00

ibm

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 91.8.0ESR) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF16 - 2022.4.0

2022-04-29 04:43:11

Security Bulletin: Multiple vulnerabilities in Mozilla Firefox affect IBM Cloud Pak for Multicloud Management Monitoring.

2023-01-31 14:47:39

gentoo

Mozilla Firefox: Multiple vulnerabilities

2022-02-21 00:00:00

Mozilla Thunderbird: Multiple Vulnerabilities

2022-08-10 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.001 Low

EPSS

Percentile

48.9%

JSON

Related for CNVD-2023-05208