Mozilla Products Multiple Vulnerabilities
Last Update Date:
14 Jan 2025
Release Date:
9 Jan 2025
1245
Views
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, spoofing, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system.
[Updated on 2025-01-14]
Updated Impact, System / Technologies affected, Solutions, Vulnerability Identifier and Related Links.
Impact
- Remote Code Execution
- Denial of Service
- Information Disclosure
- Elevation of Privilege
- Security Restriction Bypass
- Spoofing
System / Technologies affected
Versions prior to:
- Firefox 134
- Firefox for iOS 134
- Firefox ESR 128.6
- Firefox ESR 115.19
- Thunderbird 134
- Thunderbird 128.6
- Thunderbird 115.19
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 134
- Firefox for iOS 134
- Firefox ESR 128.6
- Firefox ESR 115.19
- Thunderbird 134
- Thunderbird 128.6
- Thunderbird 115.19
Vulnerability Identifier
- CVE-2024-50336
- CVE-2025-0237
- CVE-2025-0238
- CVE-2025-0239
- CVE-2025-0240
- CVE-2025-0241
- CVE-2025-0242
- CVE-2025-0243
- CVE-2025-0244
- CVE-2025-0245
- CVE-2025-0246
- CVE-2025-0247
- CVE-2025-23108
- CVE-2025-23109
Source
Related Link
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-01/
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-02/
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-03/
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-04/
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-05/
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-06/
Related Tags
Share with