Mozilla Products Multiple Vulnerabilities
RISK: High Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, security restriction bypass and data manipulation on the targeted system.
Note:
Exploit code for CVE-2026-15718 and CVE-2026-15719 is public. For CVE-2026-15718, it is an invalid memory pointer in WebAssembly flaw in Firefox’s JavaScript WebAssembly component. For CVE-2026-15719, it affects site isolation in Firefox’s DOM navigation component. Hence, the risk level is rated as High Risk.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Data Manipulation
System / Technologies affected
Versions prior to:
- Firefox 152.0.6
- Firefox for iOS 152.4
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Firefox 152.0.6
- Firefox for iOS 152.4
沒有留言:
發佈留言