CVE-2023-6866

HIGH Year: 2023
CVSS v3 Score
8.8
High
Weakness Type
CWE-755
View all →

Vulnerability Description

TypedArrays can be fallible and lacked proper exception handling. This could lead to abuse in other APIs which expect TypedArrays to always succeed. This vulnerability affects Firefox < 121.

Related Vulnerabilities

CVE-2019-14287

HIGH
CVSS:8.8(High)

In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a craf...

CWE-7552019

CVE-2019-14378

HIGH
CVSS:8.8(High)

ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.

CWE-7552019

CVE-2020-16005

HIGH
CVSS:8.8(High)

Insufficient policy enforcement in ANGLE in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CWE-7552020

CVE-2021-33477

HIGH
CVSS:8.8(High)

rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code execution because of improper handling of certain escape sequences (ESC G Q). A response is terminated by a...

CWE-7552021

CVE-2021-38003

HIGH
CVSS:8.8(High)

Inappropriate implementation in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CWE-7552021

CVE-2022-22300

HIGH
CVSS:8.8(High)

A improper handling of insufficient permissions or privileges in Fortinet FortiAnalyzer version 5.6.0 through 5.6.11, FortiAnalyzer version 6.0.0 through 6.0.11, FortiAnalyzer version 6.2.0 through 6....

CWE-7552022