CVE-2023-6861 | Mozilla Thunderbird up to 115.5 Headless Mode nsWindow::PickerOpen heap-based overflow (DLA 3697-1 / Nessus ID 214469)
A vulnerability classified as critical has been found in Mozilla Thunderbird up to 115.5. Affected is the function nsWindow::PickerOpen of the component Headless Mode. The manipulation leads to heap-based buffer overflow.
This vulnerability is traded as CVE-2023-6861. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.