{"id":"CVE-2023-23599","details":"When copying a network request from the developer tools panel as a curl command the output was not being properly sanitized and could allow arbitrary commands to be hidden within. This vulnerability affects Firefox \u003c 109, Firefox ESR \u003c 102.7, and Thunderbird \u003c 102.7.","modified":"2026-03-14T11:58:33.562596Z","published":"2023-06-02T17:15:10.627Z","related":["ALSA-2023:0285","ALSA-2023:0288","ALSA-2023:0463","ALSA-2023:0476","SUSE-SU-2023:0329-1","openSUSE-SU-2024:12623-1","openSUSE-SU-2024:12627-1","openSUSE-SU-2024:12652-1","openSUSE-SU-2024:14572-1"],"references":[{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2023-01/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2023-02/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2023-03/"},{"type":"REPORT","url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1777800"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"109.0"}]},{"events":[{"introduced":"0"},{"fixed":"102.7"}]},{"events":[{"introduced":"0"},{"fixed":"102.7"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-23599.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"}]}