Unrated severityNVD Advisory· Published Jun 2, 2023· Updated May 27, 2025
CVE-2023-32205
CVE-2023-32205
Description
In multiple cases browser prompts could have been obscured by popups controlled by content. These could have led to potential user confusion and spoofing attacks. This vulnerability affects Firefox < 113, Firefox ESR < 102.11, and Thunderbird < 102.11.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
39<102.11+ 3 more
- (no CPE)range: <102.11
- (no CPE)range: <113
- (no CPE)range: unspecified
- (no CPE)range: unspecified
<102.11+ 1 more
- (no CPE)range: <102.11
- (no CPE)range: unspecified
- osv-coords33 versionspkg:rpm/almalinux/firefoxpkg:rpm/almalinux/firefox-x11pkg:rpm/almalinux/thunderbirdpkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Tumbleweedpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-ESPOSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/MozillaFirefox&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/MozillaFirefox&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP4
< 102.11.0-2.el9_2.alma+ 32 more
- (no CPE)range: < 102.11.0-2.el9_2.alma
- (no CPE)range: < 102.11.0-2.el9_2.alma
- (no CPE)range: < 102.11.0-1.el9_2.alma
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 113.0-1.1
- (no CPE)range: < 102.11.0-150200.8.116.1
- (no CPE)range: < 102.11.0-1.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-150000.150.85.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-112.159.1
- (no CPE)range: < 102.11.0-112.159.1
- (no CPE)range: < 102.11.0-112.159.1
- (no CPE)range: < 102.11.0-112.159.1
- (no CPE)range: < 102.11.0-150000.150.85.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-112.159.1
- (no CPE)range: < 102.11.0-112.159.1
- (no CPE)range: < 102.11.0-150000.150.85.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-150200.152.87.1
- (no CPE)range: < 102.11.0-112.159.1
- (no CPE)range: < 102.11.0-112.159.1
- (no CPE)range: < 102.11.0-112.159.1
- (no CPE)range: < 102.11.0-150200.8.116.1
- (no CPE)range: < 102.11.0-150200.8.116.1
Patches
Vulnerability mechanics
References
7- security.gentoo.org/glsa/202312-03mitrevendor-advisory
- security.gentoo.org/glsa/202401-10mitrevendor-advisory
- bugzilla.mozilla.org/show_bug.cgimitre
- bugzilla.mozilla.org/show_bug.cgimitre
- www.mozilla.org/security/advisories/mfsa2023-16/mitre
- www.mozilla.org/security/advisories/mfsa2023-17/mitre
- www.mozilla.org/security/advisories/mfsa2023-18/mitre
News mentions
0No linked articles in our index yet.