vulnerability

MFSA2023-45 Firefox: Security Vulnerabilities fixed in Firefox 119 (CVE-2023-5722)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Oct 24, 2023	Oct 25, 2023	Mar 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Oct 24, 2023

Added

Oct 25, 2023

Modified

Mar 27, 2026

Description

Using iterative requests an attacker was able to learn the size of an opaque response, as well as the contents of a server-supplied Vary header. This vulnerability affects Firefox < 119.

Solution

mozilla-firefox-upgrade-119_0

References

CVE-2023-5722
https://attackerkb.com/topics/CVE-2023-5722
CWE-203
EUVD-EUVD-2023-58008
http://www.mozilla.org/security/announce/2023/mfsa2023-45.html
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-58008

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report