CVE-2023-43686

MEDIUM

Malwarebytes 4.x-5.x and Nebula 2020-10-21 and later - Denial of Service via Firefox Preference File Parser

Title source: llm

Description

An issue was discovered in Malwarebytes 4.x and 5.x (and Nebula 2020-10-21 and later). A large number of Firefox preference files can cause the parser to ignore other browser configuration files, leading to a denial of service.

References (1)

Core 1

Core References

https://www.malwarebytes.com/secure/cves/cve-2023-43686

Scores

CVSS v3 6.2

EPSS 0.0012

EPSS Percentile 2.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-755

Status published

Published Jun 09, 2026

Tracked Since Jun 10, 2026