Multiple vulnerabilities in Mozilla Firefox ESR

Beschreibung

Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, perform cross-site scripting attack.

Below is a complete list of vulnerabilities:

1. Type confusion vulnerability when looking up a property name in a „with“ block can be exploited to cause denial of service.
2. Security UI vulnerability can be exploited to spoof user interface.
3. Cross-site scripting (XSS) vulnerability can be exploited to perform cross-site scripting attack.

Ursprüngliche Informationshinweise

• MFSA2024-41

Ausnutzung

Public exploits exist for this vulnerability.

Betroffene Produkte

• Mozilla-Firefox-ESR

CVE Liste

• CVE-2024-8383
  critical
• CVE-2024-8381
  critical
• CVE-2024-8382
  critical
• CVE-2024-8384
  critical

Mehr erfahren

Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com