Mozilla Products Multiple Vulnerabilities
Release Date:
7 Aug 2024
4030
Views
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting, denial of service condition, remote code execution, sensitive information disclosure, security restriction bypass, spoofing and data manipulation on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Spoofing
- Data Manipulation
System / Technologies affected
Versions prior to:
- Firefox 129
- Firefox ESR 115.14
- Firefox ESR 128.1
- Thunderbird 115.14
- Thunderbird 128.1
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 129
- Firefox ESR 115.14
- Firefox ESR 128.1
- Thunderbird 115.14
- Thunderbird 128.1
Vulnerability Identifier
- CVE-2024-0953
- CVE-2024-7518
- CVE-2024-7519
- CVE-2024-7520
- CVE-2024-7521
- CVE-2024-7522
- CVE-2024-7523
- CVE-2024-7524
- CVE-2024-7525
- CVE-2024-7526
- CVE-2024-7527
- CVE-2024-7528
- CVE-2024-7529
- CVE-2024-7530
- CVE-2024-7531
- CVE-2024-43111
- CVE-2024-43112
- CVE-2024-43113
Source
Related Link
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-33/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-34/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-35/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-36/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-37/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-38/
Related Tags
Share with