Mozilla publishes new vulnerabilities in Thunderbird, Firefox and Firefox ESR and rates them as Important. Users or company admins should ensure quick updates, as there is a risk that malicious code can be executed.
In the list of vulnerabilities, these are all classified as “high” in terms of danger. After that, only Critical comes as the highest level. Mozilla defines it this way: “Vulnerabilities can be used to collect sensitive data from websites in other windows or to inject data or code into these websites, requiring no more than normal browsing actions.” That sounds very dangerous and updates should be carried out immediately.
Vulnerabilities rated as “High”.
Mozilla already provides the appropriate updates for all vulnerabilities. An update of the programs to the new versions is sufficient. Because there is a risk that malicious code can be executed. If this process is successful, there is a high probability that systems could be completely compromised.
Mozilla announces new, safe versions:
- Fixed security vulnerabilities in Thunderbird 102.3
- Fixed security vulnerabilities in Firefox ESR 102.3
- Fixed security vulnerabilities in Firefox 105
Shortly before this, a vulnerability had also been found in an earlier version of Firefox. This can also be fixed with the new version 105.
More at Mozilla.org