Mozilla Products Multiple Vulnerabilities
Release Date: 17 Sep 2025
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information disclosure, spoofing and security restriction bypass on the targeted system.
Impact
- Security Restriction Bypass
- Spoofing
- Information Disclosure
- Remote Code Execution
System / Technologies affected
Versions prior to:
- Firefox 143
- Firefox ESR 115.28
- Firefox ESR 140.3
- Thunderbird 140.3
- Thunderbird 143
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 143
- Firefox ESR 115.28
- Firefox ESR 140.3
- Thunderbird 140.3
- Thunderbird 143
Vulnerability Identifier
- CVE-2025-10527
- CVE-2025-10528
- CVE-2025-10529
- CVE-2025-10530
- CVE-2025-10531
- CVE-2025-10532
- CVE-2025-10533
- CVE-2025-10534
- CVE-2025-10535
- CVE-2025-10536
- CVE-2025-10537
Source
Related Link
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-73/
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-74/
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-75/
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-77/
- https://www.mozilla.org/en-US/security/advisories/mfsa2025-78/
沒有留言:
發佈留言