Mozilla Firefox, Firefox for Android, Firefox ESR, Thunderbird Remote Code Execution Vulnerabilities

Mozilla Firefox, Firefox for Android, Firefox ESR, Thunderbird Remote Code Execution Vulnerabilities

Two critical vulnerabilities affecting Mozilla products Firefox, Firefox for Android, Firefox ESR and Thunderbird have been published by Mozilla Foundation.

Both vulnerabilities affect all mentioned products and both vulnerabilities have an impact of “critical”.

Affected Systems

Products listed below are thought to be affected:

IoC’s

-

Recommended Solution(s)

Organizations using the above-mentioned products are recommended to upgrade respective software to versions listed below:

CVE / CWE

CVE-2022-1802, CVE-2022-1529

Related Website(s)

• https://www.mozilla.org/en-US/security/advisories/mfsa2022-19/

* Vulnerabilities with a CVSS 3.1 score between 7.0 and 8.9 are evaluated to be “high” whereas vulnerabilities with a CVSS 3.1 score between 9.0 and 10.0 are evaluated to be “critical”.