Vulnerability Description
The Firefox updater created a directory writable by non-privileged users. When uninstalling Firefox, any files in that directory would be recursively deleted with the permissions of the uninstalling user account. This could be combined with creation of a junction (a form of symbolic link) to allow arbitrary file deletion controlled by the non-privileged user. *This bug only affects Firefox on Windows. Other operating systems are unaffected.* This vulnerability affects Firefox < 116, Firefox ESR < 115.1, and Thunderbird < 115.1.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Firefox | < 116.0 |
| Mozilla | Firefox Esr | < 115.1 |
Related Weaknesses (CWE)
References
- https://bugzilla.mozilla.org/show_bug.cgi?id=1824420Issue TrackingPermissions Required
- https://www.mozilla.org/security/advisories/mfsa2023-29/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2023-31/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2023-33/
- https://bugzilla.mozilla.org/show_bug.cgi?id=1824420Issue TrackingPermissions Required
- https://www.mozilla.org/security/advisories/mfsa2023-29/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2023-31/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2023-33/
FAQ
What is CVE-2023-4052?
CVE-2023-4052 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The Firefox updater created a directory writable by non-privileged users. When uninstalling Firefox, any files in that directory would be recursively deleted with the permissions of the uninstalling u...
How severe is CVE-2023-4052?
CVE-2023-4052 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-4052?
Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Firefox, Mozilla Firefox Esr.