Wind River Support Network

HomeDefectsLIN1022-3137
Fixed

LIN1022-3137 : Security Advisory - firefox - CVE-2023-23597

Created: Jan 18, 2023    Updated: Jul 27, 2025
Resolved Date: Jul 27, 2025
Found In Version: 10.22.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

A compromised web child process could disable web security opening restrictions, leading to a new child process being spawned within the <code>file://</code> context. Given a reliable exploit primitive, this new process could be exploited again leading to arbitrary file read. This vulnerability affects Firefox < 109.

https://nvd.nist.gov/vuln/detail/CVE-2023-23597
  • Linkedin
  • Facebook
  • Twitter
  • Youtube