Mozilla Products Multiple Vulnerabilities
Release Date:
27 Nov 2024
138
Views
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting, denial of service condition, sensitive information disclosure, remote code execution, security restriction bypass, data manipulation and spoofing on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Information Disclosure
- Remote Code Execution
- Security Restriction Bypass
- Spoofing
- Data Manipulation
System / Technologies affected
Versions prior to:
- Firefox 133
- Firefox ESR 128.5
- Firefox ESR 115.18
- Firefox for iOS 133
- Thunderbird 133
- Thunderbird 128.5
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 133
- Firefox ESR 128.5
- Firefox ESR 115.18
- Firefox for iOS 133
- Thunderbird 133
- Thunderbird 128.5
Vulnerability Identifier
- CVE-2024-11691
- CVE-2024-11692
- CVE-2024-11693
- CVE-2024-11694
- CVE-2024-11695
- CVE-2024-11696
- CVE-2024-11697
- CVE-2024-11698
- CVE-2024-11699
- CVE-2024-11700
- CVE-2024-11701
- CVE-2024-11702
- CVE-2024-11703
- CVE-2024-11704
- CVE-2024-11705
- CVE-2024-11706
- CVE-2024-11708
- CVE-2024-53975
- CVE-2024-53976
Source
Related Link
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-63/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-64/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-65/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-66/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-67/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-68/
Related Tags
Share with