Дата обнаружения
|
23/10/2018 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities were found in Mozilla Firefox and Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, gain privileges, read local files, spoof user interface and execute arbitrary code. Below is a complete list of vulnerabilities:
Technical details Vulnerability (1) and (9) are related to Firefox for Android only. Vulnerability (3) only affects 32-bit builds, 64-bit builds are not vulnerable to this issue. |
Пораженные продукты
|
Mozilla Firefox earlier than 63 |
Решение
|
Update to the latest version |
Первичный источник обнаружения
|
Mozilla Foundation Security Advisory 2018-26 Mozilla Foundation Security Advisory 2018-27 |
Оказываемое влияние
?
|
ACE
[?]
DoS
[?]
SB
[?]
PE
[?]
RLF
[?]
SUI
[?]
|
Связанные продукты
|
Mozilla Firefox Mozilla Firefox ESR |
CVE-IDS
|
CVE-2018-123919.3Critical
CVE-2018-123927.5Critical CVE-2018-123935.0Critical CVE-2018-123955.0Critical CVE-2018-123964.3Warning CVE-2018-123973.6Warning CVE-2018-123984.3Warning CVE-2018-123994.3Warning CVE-2018-124005.0Critical CVE-2018-124015.0Critical CVE-2018-124024.3Warning CVE-2018-124035.0Critical CVE-2018-123886.8High CVE-2018-123896.8High CVE-2018-123907.5Critical |
Узнай статистику распространения уязвимостей в твоем регионе |