cve/2023/CVE-2023-6856.md

### [CVE-2023-6856](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6856)
![](https://img.shields.io/static/v1?label=Product&message=Firefox%20ESR&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Firefox&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Thunderbird&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%20115.6%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%20121%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Heap-buffer-overflow%20affecting%20WebGL%20DrawElementsInstanced%20method%20with%20Mesa%20VM%20driver&color=brighgreen)

### Description

The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver.  This issue could allow an attacker to perform remote code execution and sandbox escape. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/dlehgus1023/dlehgus1023
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2023-6856](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6856)`
			`![](https://img.shields.io/static/v1?label=Product&message=Firefox%20ESR&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Firefox&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Thunderbird&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%20115.6%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%20121%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=Heap-buffer-overflow%20affecting%20WebGL%20DrawElementsInstanced%20method%20with%20Mesa%20VM%20driver&color=brighgreen)`

			`### Description`

			The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an attacker to perform remote code execution and sandbox escape. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/dlehgus1023/dlehgus1023`