Mozilla Products Multiple Vulnerabilities
Last Update Date:
10 Sep 2024
Release Date:
5 Sep 2024
3233
Views
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, remote code execution and security restriction bypass on the targeted system.
[Updated on 2024-09-10]
Updated System / Technologies affected, Solutions, Vulnerability Identifier and Related Links.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Spoofing
System / Technologies affected
Versions prior to:
- Firefox 130
- Firefox ESR 128.2
- Firefox ESR 115.15
- Focus for iOS 130
- Thunderbird 115.15
- Thunderbird 128.2
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 130
- Firefox ESR 128.2
- Firefox ESR 115.15
- Focus for iOS 130
- Thunderbird 115.15
- Thunderbird 128.2
Vulnerability Identifier
- CVE-2023-6870
- CVE-2024-8381
- CVE-2024-8382
- CVE-2024-8383
- CVE-2024-8384
- CVE-2024-8385
- CVE-2024-8386
- CVE-2024-8387
- CVE-2024-8388
- CVE-2024-8389
- CVE-2024-8394
- CVE-2024-8399
Source
Related Link
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-40/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-41/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-42/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-43/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-44/
Share with