Multiple Vulnerabilities in Mozilla Products - 20240417001

Overview

Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution.

What is vulnerable?

The vulnerabilities affect products prior to the following versions:

• Firefox ESR versions prior to 115.10
• Thunderbird versions prior to 115.10
• Firefox versions prior to 125

What has been observed?

There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.

Recommendation

The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of one month... (refer Patch Management)