{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-4578", "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "state": "PUBLISHED", "assignerShortName": "mozilla", "dateReserved": "2023-08-29T03:36:49.709Z", "datePublished": "2023-09-11T08:01:17.333Z", "dateUpdated": "2024-09-19T20:02:19.081Z"}, "containers": {"cna": {"affected": [{"product": "Firefox", "vendor": "Mozilla", "versions": [{"lessThan": "117", "status": "affected", "version": "unspecified", "versionType": "custom"}]}, {"product": "Firefox ESR", "vendor": "Mozilla", "versions": [{"lessThan": "115.2", "status": "affected", "version": "unspecified", "versionType": "custom"}]}, {"product": "Thunderbird", "vendor": "Mozilla", "versions": [{"lessThan": "115.2", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "When calling `JS::CheckRegExpSyntax` a Syntax Error could have been set which would end in calling `convertToRuntimeErrorAndClear`. A path in the function could attempt to allocate memory when none is available which would have caused a newly created Out of Memory exception to be mishandled as a Syntax Error. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "When calling <code>JS::CheckRegExpSyntax</code> a Syntax Error could have been set which would end in calling <code>convertToRuntimeErrorAndClear</code>. A path in the function could attempt to allocate memory when none is available which would have caused a newly created Out of Memory exception to be mishandled as a Syntax Error. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2."}]}], "problemTypes": [{"descriptions": [{"description": "Error reporting methods in SpiderMonkey could have triggered an Out of Memory Exception", "lang": "en", "type": "text"}]}], "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1839007"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-34/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-36/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-38/"}], "credits": [{"lang": "en", "value": "Irvan Kurniawan (@sourc7)"}], "providerMetadata": {"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "shortName": "mozilla", "dateUpdated": "2023-09-11T08:01:17.333Z"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T07:31:06.622Z"}, "title": "CVE Program Container", "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1839007", "tags": ["x_transferred"]}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-34/", "tags": ["x_transferred"]}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-36/", "tags": ["x_transferred"]}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-38/", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-19T20:02:09.736434Z", "id": "CVE-2023-4578", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-19T20:02:19.081Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1839007", "tags": ["x_transferred"]}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-34/", "tags": ["x_transferred"]}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-36/", "tags": ["x_transferred"]}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-38/", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T07:31:06.622Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-4578", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-19T20:02:09.736434Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-19T20:02:16.035Z"}}], "cna": {"credits": [{"lang": "en", "value": "Irvan Kurniawan (@sourc7)"}], "affected": [{"vendor": "Mozilla", "product": "Firefox", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "117", "versionType": "custom"}]}, {"vendor": "Mozilla", "product": "Firefox ESR", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "115.2", "versionType": "custom"}]}, {"vendor": "Mozilla", "product": "Thunderbird", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "115.2", "versionType": "custom"}]}], "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1839007"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-34/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-36/"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2023-38/"}], "descriptions": [{"lang": "en", "value": "When calling `JS::CheckRegExpSyntax` a Syntax Error could have been set which would end in calling `convertToRuntimeErrorAndClear`. A path in the function could attempt to allocate memory when none is available which would have caused a newly created Out of Memory exception to be mishandled as a Syntax Error. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2.", "supportingMedia": [{"type": "text/html", "value": "When calling <code>JS::CheckRegExpSyntax</code> a Syntax Error could have been set which would end in calling <code>convertToRuntimeErrorAndClear</code>. A path in the function could attempt to allocate memory when none is available which would have caused a newly created Out of Memory exception to be mishandled as a Syntax Error. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "Error reporting methods in SpiderMonkey could have triggered an Out of Memory Exception"}]}], "providerMetadata": {"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "shortName": "mozilla", "dateUpdated": "2023-09-11T08:01:17.333Z"}}}, "cveMetadata": {"cveId": "CVE-2023-4578", "state": "PUBLISHED", "dateUpdated": "2024-09-19T20:02:19.081Z", "dateReserved": "2023-08-29T03:36:49.709Z", "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "datePublished": "2023-09-11T08:01:17.333Z", "assignerShortName": "mozilla"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*", "matchCriteriaId": "97397EB0-B9CD-4C1F-B2DC-92F03D4DC61B", "versionEndExcluding": "117.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*", "matchCriteriaId": "3DB778E6-50ED-4395-AFA5-A0043AEB4382", "versionEndExcluding": "115.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*", "matchCriteriaId": "F88F4161-8C10-4753-BE49-8AE5FB965EE4", "versionEndExcluding": "115.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "When calling `JS::CheckRegExpSyntax` a Syntax Error could have been set which would end in calling `convertToRuntimeErrorAndClear`. A path in the function could attempt to allocate memory when none is available which would have caused a newly created Out of Memory exception to be mishandled as a Syntax Error. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2."}, {"lang": "es", "value": "Al llamar a `JS::CheckRegExpSyntax`, se podr\u00eda haber establecido un error de sintaxis que terminar\u00eda llamando a `convertToRuntimeErrorAndClear`. Una ruta en la funci\u00f3n podr\u00eda intentar asignar memoria cuando no hay ninguna disponible, lo que habr\u00eda provocado que una excepci\u00f3n de Falta de Memoria reci\u00e9n creada se manejara incorrectamente como un Error de Sintaxis. Esta vulnerabilidad afecta a Firefox &lt; 117, Firefox ESR &lt; 115.2 y Thunderbird &lt; 115.2."}], "id": "CVE-2023-4578", "lastModified": "2024-11-21T08:35:28.180", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-09-11T09:15:09.347", "references": [{"source": "security@mozilla.org", "tags": ["Issue Tracking", "Permissions Required"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1839007"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2023-34/"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2023-36/"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2023-38/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Permissions Required"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1839007"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2023-34/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2023-36/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2023-38/"}], "sourceIdentifier": "security@mozilla.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-770"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Irvan Kurniawan (@sourc7) as the original reporter.", "affected_release": [{"advisory": "RHSA-2023:4945", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "thunderbird-0:102.15.0-1.el7_9", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:5019", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "firefox-0:102.15.0-1.el7_9", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2023-09-07T00:00:00Z"}, {"advisory": "RHSA-2023:4952", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "firefox-0:102.15.0-1.el8_8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4954", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "thunderbird-0:102.15.0-1.el8_8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4948", "cpe": "cpe:/a:redhat:rhel_e4s:8.1", "package": "thunderbird-0:102.15.0-1.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4949", "cpe": "cpe:/a:redhat:rhel_e4s:8.1", "package": "firefox-0:102.15.0-1.el8_1", "product_name": "Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4946", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "thunderbird-0:102.15.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4951", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "firefox-0:102.15.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4946", "cpe": "cpe:/a:redhat:rhel_tus:8.2", "package": "thunderbird-0:102.15.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4951", "cpe": "cpe:/a:redhat:rhel_tus:8.2", "package": "firefox-0:102.15.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4946", "cpe": "cpe:/a:redhat:rhel_e4s:8.2", "package": "thunderbird-0:102.15.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4951", "cpe": "cpe:/a:redhat:rhel_e4s:8.2", "package": "firefox-0:102.15.0-1.el8_2", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4956", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "thunderbird-0:102.15.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4957", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "firefox-0:102.15.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4956", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "thunderbird-0:102.15.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4957", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "firefox-0:102.15.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4956", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "thunderbird-0:102.15.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4957", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "firefox-0:102.15.0-1.el8_4", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4959", "cpe": "cpe:/a:redhat:rhel_eus:8.6", "package": "firefox-0:102.15.0-1.el8_6", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4955", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "thunderbird-0:102.15.0-1.el9_2", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4958", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "firefox-0:102.15.0-1.el9_2", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4947", "cpe": "cpe:/a:redhat:rhel_eus:9.0", "package": "thunderbird-0:102.15.0-1.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-09-04T00:00:00Z"}, {"advisory": "RHSA-2023:4950", "cpe": "cpe:/a:redhat:rhel_eus:9.0", "package": "firefox-0:102.15.0-1.el9_0", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2023-09-04T00:00:00Z"}], "bugzilla": {"description": "Mozilla: Error reporting methods in SpiderMonkey could have triggered an Out of Memory Exception", "id": "2236077", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236077"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.1", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "status": "verified"}, "cwe": "CWE-119", "details": ["When calling `JS::CheckRegExpSyntax` a Syntax Error could have been set which would end in calling `convertToRuntimeErrorAndClear`. A path in the function could attempt to allocate memory when none is available which would have caused a newly created Out of Memory exception to be mishandled as a Syntax Error. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2.", "The Mozilla Foundation Security Advisory describes this flaw as:\nWhen calling `JS::CheckRegExpSyntax` a Syntax Error could have been set which would end in calling `convertToRuntimeErrorAndClear`. A path in the function could attempt to allocate memory when none is available which would have caused a newly created Out of Memory exception to be mishandled as a Syntax Error."], "name": "CVE-2023-4578", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "firefox", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "thunderbird", "product_name": "Red Hat Enterprise Linux 6"}], "public_date": "2023-08-29T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-4578\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-4578\nhttps://www.mozilla.org/en-US/security/advisories/mfsa2023-36/#CVE-2023-4578"], "statement": "Red Hat Product Security rates the severity of this flaw as determined by the Mozilla Foundation Security Advisory.", "threat_severity": "Moderate", "upstream_fix": "thunderbird 115.2, firefox 115.2"}