VYPR
Medium severity5.3NVD Advisory· Published Dec 19, 2023· Updated Jun 17, 2026

CVE-2023-6857

CVE-2023-6857

Description

When resolving a symlink, a race may occur where the buffer passed to readlink may actually be smaller than necessary. *This bug only affects Firefox on Unix-based operating systems (Android, Linux, MacOS). Windows is unaffected.* This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

37

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.