Mozilla Products Multiple Vulnerabilities
Release Date: 1 Jun 2022
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, remote code execution, sensitive information disclosure, data manipulation and security restriction bypass on the targeted system.
Impact
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Spoofing
- Denial of Service
- Data Manipulation
System / Technologies affected
Versions prior to:
- Firefox 101
- Firefox ESR 91.10
- Thunderbird 91.10
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 101
- Firefox ESR 91.10
- Thunderbird 91.10
Vulnerability Identifier
- CVE-2022-1834
- CVE-2022-1919
- CVE-2022-31736
- CVE-2022-31737
- CVE-2022-31738
- CVE-2022-31739
- CVE-2022-31740
- CVE-2022-31741
- CVE-2022-31742
- CVE-2022-31743
- CVE-2022-31744
- CVE-2022-31745
- CVE-2022-31747
- CVE-2022-31748
Source
Related Link
- https://www.auscert.org.au/bulletins/ESB-2022.2686
- https://www.auscert.org.au/bulletins/ESB-2022.2685
- https://www.auscert.org.au/bulletins/ESB-2022.2684
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-20/
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-21/
- https://www.mozilla.org/en-US/security/advisories/mfsa2022-22/
沒有留言:
發佈留言