VYPR
Unrated severityNVD Advisory· Published Sep 11, 2023· Updated Dec 18, 2025

Integer Overflow in RecordedSourceSurfaceCreation

CVE-2023-4576

Description

On Windows, an integer overflow could occur in RecordedSourceSurfaceCreation which resulted in a heap buffer overflow potentially leaking sensitive data that could have led to a sandbox escape. *This bug only affects Firefox on Windows. Other operating systems are unaffected.* This vulnerability affects Firefox < 117, Firefox ESR < 102.15, Firefox ESR < 115.2, Thunderbird < 102.15, and Thunderbird < 115.2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

33

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.