Malwarebytes DS via Firefox Pref Parser (CVE-2023-43686): CVE-2023-43686 June 2026

An issue was discovered in Malwarebytes 4.x and 5.x (and Nebula 2020-10-21 and later). A large number of Firefox preference files can cause the parser to ignore other browser configuration files, leading to a denial of service.

Vulnerability Analysis

CVE-2023-43686 is exploitable with local system access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

NONE

Availability Impact:

HIGH

Weakness Type

Improper Handling of Exceptional Conditions

The software does not handle or incorrectly handles an exceptional condition.

Products Associated with CVE-2023-43686

Want to know whenever a new CVE is published for Malwarebytes? stack.watch will email you.

Malwarebytes DS via Firefox Pref Parser (CVE-2023-43686)CVE-2023-43686 Published on June 9, 2026

Vulnerability Analysis

Weakness Type

Improper Handling of Exceptional Conditions

Products Associated with CVE-2023-43686

Malwarebytes DS via Firefox Pref Parser (CVE-2023-43686)
CVE-2023-43686 Published on June 9, 2026