Heap Buffer Overflow in WebGL's DrawElementsInstanced Method with Mesa VM Driver

Heap Buffer Overflow in WebGL's DrawElementsInstanced Method with Mesa VM Driver

CVE-2023-6856 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an attacker to perform remote code execution and sandbox escape. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.

Learn more about our Web App Pen Testing.