Multiple vulnerabilities in Mozilla Firefox ESR

Descrição

Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. Memory safety vulnerability can be exploited to execute arbitrary code.
2. Code execution vulnerability in Download Protection can be exploited to execute arbitrary code.
3. Use after free vulnerability in WebGL can be exploited to cause denial of service.
4. Memory corruption vulnerability in WebGL can be exploited remotely to execute arbitrary code.
5. Information disclosure vulnerability in Content process can be exploited to obtain sensitive information.
6. Use after free vulnerability in WebGL can be exploited to cause denial of service or execute arbitrary code.
7. Code execution vulnerability in Drag and Drop can be exploited to execute arbitrary code.

Comunicados originais

• MFSA2022-52

Produtos relacionados

• Mozilla-Firefox-ESR

Lista de CVE

• CVE-2022-46878
  critical
• CVE-2022-46875
  high
• CVE-2022-46872
  critical
• CVE-2022-46874
  critical
• CVE-2022-46882
  critical
• CVE-2022-46881
  critical
• CVE-2022-46880
  high

Saiba mais

Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com