Mozilla has released security updates to address vulnerabilities in Firefox, Thunderbird and Firefox ESR. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.

Affected Systems

• Mozilla Firefox 121.

•  Mozilla Thunderbird 115.6.  

• Mozilla Firefox ESR 115.6.

Security Risks

The identified vulnerabilities in Mozilla Firefox, Thunderbird, and Firefox ESR pose a security risk, allowing cyber-attacks. They can lead to memory corruption, code execution, data compromise, system control, and unauthorized access.

Recommended Actions

The National Cyber Security Authority (NCSA) strongly recommends to system administrators to:

• Follow Mozilla's Security Advisories to lower the risk of potential exploits, protect systems, and ensure their security.

• Apply the required and latest security updates as soon as possible.

        The released software version to upgrade to are:

• Mozilla Firefox 122.

•  Mozilla Thunderbird 115.7.  

• Mozilla Firefox ESR 115.7.

• Before any update task, please ensure you have a recent backup that can easily be restored.

For further information and support, please contact NCSA by email at rwcsirt@ncsa.gov.rw or call us on 9009.

References

https://www.mozilla.org/en-US/security/advisories/