usn-6201-1
Vulnerability from osv_ubuntu
Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. (CVE-2023-37201, CVE-2023-37202, CVE-2023-37205, CVE-2023-37207, CVE-2023-37209, CVE-2023-37210, CVE-2023-37211, CVE-2023-37212)
Martin Hostettler discovered that Firefox did not properly block storage of all cookies when configured. An attacker could potentially exploits this issue to store tracking data without permission in localstorage. (CVE-2023-3482)
Paul Nickerson discovered that Firefox did have insufficient validation in the Drag and Drop API. If a user were tricked into creating a shortcut to local system files, an attacker could execute arbitrary code. (CVE-2023-37203)
Irvan Kurniawan discovered that Firefox did not properly manage fullscreen notifications using an option element having an expensive computational function. An attacker could potentially exploit this issue to perform spoofing attacks. (CVE-2023-37204)
Ameen Basha M K discovered that Firefox did not properly validate symlinks in the FileSystem API. If a user were tricked into uploading a symlinked file to a malicious website, an attacker could obtain sensitive information. (CVE-2023-37206)
Puf discovered that Firefox did not properly provide warning when opening Diagcab files. If a user were tricked into opening a malicicous Diagcab file, an attacker could execute arbitrary code. (CVE-2023-37208)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2023-3482",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37201",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37202",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37203",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37204",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37205",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37206",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37207",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37208",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37209",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37210",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37211",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-37212",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:20.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "firefox",
"binary_version": "115.0+build2-0ubuntu0.20.04.3"
},
{
"binary_name": "firefox-geckodriver",
"binary_version": "115.0+build2-0ubuntu0.20.04.3"
},
{
"binary_name": "firefox-mozsymbols",
"binary_version": "115.0+build2-0ubuntu0.20.04.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "firefox",
"purl": "pkg:deb/ubuntu/firefox@115.0+build2-0ubuntu0.20.04.3?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "115.0+build2-0ubuntu0.20.04.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"69.0.3+build1-0ubuntu1",
"70.0+build2-0ubuntu1",
"70.0+build2-0ubuntu2",
"70.0.1+build1-0ubuntu2",
"71.0+build2-0ubuntu2",
"71.0+build5-0ubuntu1",
"72.0.1+build1-0ubuntu1",
"72.0.2+build1-0ubuntu1",
"73.0+build1-0ubuntu1",
"73.0+build2-0ubuntu1",
"73.0+build3-0ubuntu1",
"73.0.1+build1-0ubuntu1",
"74.0+build1-0ubuntu1",
"74.0+build2-0ubuntu1",
"74.0+build2-0ubuntu2",
"74.0+build3-0ubuntu1",
"75.0+build3-0ubuntu1",
"76.0+build2-0ubuntu0.20.04.1",
"76.0.1+build1-0ubuntu0.20.04.1",
"77.0.1+build1-0ubuntu0.20.04.1",
"78.0.1+build1-0ubuntu0.20.04.1",
"78.0.2+build2-0ubuntu0.20.04.1",
"79.0+build1-0ubuntu0.20.04.1",
"80.0+build2-0ubuntu0.20.04.1",
"80.0.1+build1-0ubuntu0.20.04.1",
"81.0+build2-0ubuntu0.20.04.1",
"81.0.2+build1-0ubuntu0.20.04.1",
"82.0+build2-0ubuntu0.20.04.1",
"82.0.2+build1-0ubuntu0.20.04.1",
"82.0.3+build1-0ubuntu0.20.04.1",
"83.0+build2-0ubuntu0.20.04.1",
"84.0+build3-0ubuntu0.20.04.1",
"84.0.1+build1-0ubuntu0.20.04.1",
"84.0.2+build1-0ubuntu0.20.04.1",
"85.0+build1-0ubuntu0.20.04.1",
"85.0.1+build1-0ubuntu0.20.04.1",
"86.0+build3-0ubuntu0.20.04.1",
"86.0.1+build1-0ubuntu0.20.04.1",
"87.0+build3-0ubuntu0.20.04.2",
"88.0+build2-0ubuntu0.20.04.1",
"88.0.1+build1-0ubuntu0.20.04.2",
"89.0+build2-0ubuntu0.20.04.2",
"89.0.1+build1-0ubuntu0.20.04.1",
"89.0.2+build1-0ubuntu0.20.04.1",
"90.0+build1-0ubuntu0.20.04.1",
"90.0.2+build1-0ubuntu0.20.04.1",
"91.0+build2-0ubuntu0.20.04.1",
"91.0.1+build1-0ubuntu0.20.04.1",
"91.0.2+build1-0ubuntu0.20.04.1",
"92.0+build3-0ubuntu0.20.04.1",
"93.0+build1-0ubuntu0.20.04.1",
"94.0+build3-0ubuntu0.20.04.1",
"95.0+build1-0ubuntu0.20.04.1",
"95.0.1+build2-0ubuntu0.20.04.1",
"96.0+build2-0ubuntu0.20.04.1",
"97.0+build2-0ubuntu0.20.04.1",
"97.0.2+build1-0ubuntu0.20.04.1",
"98.0+build3-0ubuntu0.20.04.2",
"98.0.1+build2-0ubuntu0.20.04.1",
"98.0.2+build1-0ubuntu0.20.04.1",
"99.0+build2-0ubuntu0.20.04.2",
"100.0+build2-0ubuntu0.20.04.1",
"100.0.2+build1-0ubuntu0.20.04.1",
"101.0.1+build1-0ubuntu0.20.04.1",
"102.0+build2-0ubuntu0.20.04.1",
"103.0+build1-0ubuntu0.20.04.1",
"104.0+build3-0ubuntu0.20.04.1",
"105.0+build2-0ubuntu0.20.04.1",
"106.0.2+build1-0ubuntu0.20.04.1",
"106.0.5+build1-0ubuntu0.20.04.1",
"107.0+build2-0ubuntu0.20.04.1",
"108.0+build2-0ubuntu0.20.04.1",
"108.0.1+build1-0ubuntu0.20.04.1",
"108.0.2+build1-0ubuntu0.20.04.1",
"109.0+build2-0ubuntu0.20.04.1",
"109.0.1+build1-0ubuntu0.20.04.2",
"110.0+build3-0ubuntu0.20.04.1",
"110.0.1+build2-0ubuntu0.20.04.1",
"111.0+build2-0ubuntu0.20.04.1",
"111.0.1+build2-0ubuntu0.20.04.1",
"112.0+build2-0ubuntu0.20.04.1",
"112.0.1+build1-0ubuntu0.20.04.1",
"112.0.2+build1-0ubuntu0.20.04.1",
"113.0+build2-0ubuntu0.20.04.1",
"113.0.1+build1-0ubuntu0.20.04.1",
"113.0.2+build1-0ubuntu0.20.04.1",
"114.0+build3-0ubuntu0.20.04.1",
"114.0.1+build1-0ubuntu0.20.04.1",
"114.0.2+build1-0ubuntu0.20.04.1"
]
}
],
"aliases": [],
"details": "Multiple security issues were discovered in Firefox. If a user were\ntricked into opening a specially crafted website, an attacker could\npotentially exploit these to cause a denial of service, obtain sensitive\ninformation across domains, or execute arbitrary code. (CVE-2023-37201,\nCVE-2023-37202, CVE-2023-37205, CVE-2023-37207, CVE-2023-37209,\nCVE-2023-37210, CVE-2023-37211, CVE-2023-37212)\n\nMartin Hostettler discovered that Firefox did not properly block storage of\nall cookies when configured. An attacker could potentially exploits this\nissue to store tracking data without permission in localstorage.\n(CVE-2023-3482)\n\nPaul Nickerson discovered that Firefox did have insufficient validation in\nthe Drag and Drop API. If a user were tricked into creating a shortcut to\nlocal system files, an attacker could execute arbitrary code.\n(CVE-2023-37203)\n\nIrvan Kurniawan discovered that Firefox did not properly manage fullscreen\nnotifications using an option element having an expensive computational\nfunction. An attacker could potentially exploit this issue to perform\nspoofing attacks. (CVE-2023-37204)\n\nAmeen Basha M K discovered that Firefox did not properly validate symlinks\nin the FileSystem API. If a user were tricked into uploading a symlinked\nfile to a malicious website, an attacker could obtain sensitive information.\n(CVE-2023-37206)\n\nPuf discovered that Firefox did not properly provide warning when opening\nDiagcab files. If a user were tricked into opening a malicicous Diagcab\nfile, an attacker could execute arbitrary code. (CVE-2023-37208)\n",
"id": "USN-6201-1",
"modified": "2026-04-22T07:37:05Z",
"published": "2023-07-05T09:23:05Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6201-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-3482"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37201"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37202"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37203"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37204"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37205"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37206"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37207"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37208"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37209"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37210"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37211"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-37212"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "firefox vulnerabilities",
"upstream": [
"UBUNTU-CVE-2023-3482",
"UBUNTU-CVE-2023-37201",
"UBUNTU-CVE-2023-37202",
"UBUNTU-CVE-2023-37203",
"UBUNTU-CVE-2023-37204",
"UBUNTU-CVE-2023-37205",
"UBUNTU-CVE-2023-37206",
"UBUNTU-CVE-2023-37207",
"UBUNTU-CVE-2023-37208",
"UBUNTU-CVE-2023-37209",
"UBUNTU-CVE-2023-37210",
"UBUNTU-CVE-2023-37211",
"UBUNTU-CVE-2023-37212"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.