CVE-2023-4052

The Firefox updater created a directory writable by non-privileged users. When uninstalling Firefox, any files in that directory would be recursively deleted with the permissions of the uninstalling user account. This could be combined with creation of a junction (a form of symbolic link) to allow arbitrary file deletion controlled by the non-privileged user. This bug only affects Firefox on Windows. Other operating systems are unaffected. This vulnerability affects Firefox < 116, Firefox ESR < 115.1, and Thunderbird < 115.1.

Published: Aug 1, 2023
Updated: Aug 8, 2023
CVE: CVE-2023-4052
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CWEs:

CWE-59

Affected Software
References

Software	From	Fixed in
mozilla / firefox	-	116.0
mozilla / firefox_esr	-	115.1

https://bugzilla.mozilla.org/show_bug.cgi?id=1824420
https://www.mozilla.org/security/advisories/mfsa2023-29/
https://www.mozilla.org/security/advisories/mfsa2023-31/
https://www.mozilla.org/security/advisories/mfsa2023-33/

Vulnerability Database

289,697

CVE-2023-4052