VYPR
Unrated severityNVD Advisory· Published Jun 2, 2023· Updated Dec 18, 2025

Malicious command could be hidden in devtools output on Windows

CVE-2023-23599

Description

When copying a network request from the developer tools panel as a curl command the output was not being properly sanitized and could allow arbitrary commands to be hidden within. This vulnerability affects Firefox < 109, Firefox ESR < 102.7, and Thunderbird < 102.7.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

15

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.