CVE-2023-37205 — Mozilla Firefox vulnerability

7 documents6 sources

Severity

6.5MEDIUMNVD

EPSS

0.2%

top 51.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJul 5

Description

The use of RTL Arabic characters in the address bar may have allowed for URL spoofing. This vulnerability affects Firefox < 115.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

▶debiandebian/firefox< firefox 115.0-1 (sid)

▶CVEListV5mozilla/firefoxunspecified — 115

▶Ubuntumozilla/firefox< 115.0+build2-0ubuntu0.20.04.3

OSV

firefox vulnerabilities↗2023-07-05

▶

OSV

CVE-2023-37205: The use of RTL Arabic characters in the address bar may have allowed for URL spoofing↗2023-07-05

▶

GHSA

GHSA-2j7h-923g-m6xf: The use of RTL Arabic characters in the address bar may have allowed for URL spoofing↗2023-07-05

▶

Ubuntu

Firefox vulnerabilities↗2023-07-05

▶

Debian

CVE-2023-37205: firefox - The use of RTL Arabic characters in the address bar may have allowed for URL spo...↗2023

▶

Mozilla

Mozilla Foundation Security Advisory 2023-22: CVE-2023-37205↗

▶