Heap buffer overflow vulnerability in vp8 encoding in libvpx in Google Chrome, Mozilla Firefox, Firefox ESR, or Microsoft Edge via unspecified vectors - CVE-2023-5217 (Mac OS)| ID: oval:org.secpod.oval:def:93467 | Date: (C)2023-09-30 (M)2024-02-19 |
| Class: VULNERABILITY | Family: macos |
The host is installed with Google Chrome before 117.0.5938.132, Mozilla Firefox before 118.0.1, Mozilla Firefox ESR, or Microsoft Edge before 117.0.2045.47 before 115.3.1 and is prone to a heap buffer overflow vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact.
| Platform: |
| Apple Mac OS 14 |
| Apple Mac OS 13 |
| Apple Mac OS 11 |
| Apple Mac OS 12 |
| Apple Mac OS X 10.11 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.15 |
| Product: |
| Google Chrome |
| Google Chrome Enterprise |
| Mozilla Firefox |
| Mozilla Firefox ESR |
| Microsoft Edge (Chromium-Based) |
