Mozilla Products Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla products, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, security restriction bypass, sensitive information disclosure, elevation of privilege, tampering and cross-site scripting on the targeted system.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Cross-Site Scripting
- Elevation of Privilege
- Data Manipulation
System / Technologies affected
Versions prior to:
- Firefox 88
- Thunderbird 78.10
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 88
- Thunderbird 78.10
Vulnerability Identifier
- CVE-2021-23994
- CVE-2021-23995
- CVE-2021-23996
- CVE-2021-23997
- CVE-2021-23998
- CVE-2021-23999
- CVE-2021-24000
- CVE-2021-24001
- CVE-2021-24002
- CVE-2021-29944
- CVE-2021-29945
- CVE-2021-29946
- CVE-2021-29947
Source
Related Link
https://www.mozilla.org/en-US/security/advisories/mfsa2021-16/
https://www.mozilla.org/en-US/security/advisories/mfsa2021-14/
https://www.auscert.org.au/bulletins/ESB-2021.1313
https://www.auscert.org.au/bulletins/ESB-2021.1312
Related Tags
Share with