Puf

**Name of the Vulnerable Software and Affected Versions** Microsoft Edge (Chromium-based) for Android (affected versions not specified) **Description** A spoofing issue exists in Microsoft Edge (Chromium-based) for Android. This allows for potential phishing campaigns, particularly on mobile devices, and requires no authentication. The issue involves a network vector. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Nome do Software Vulnerável e Versões Afetadas: Microsoft Edge (baseado em Chromium) (versões afetadas não especificadas) Descrição: Um problema de spoofing permite que atacantes não autorizados realizem spoofing através de uma rede, potencialmente afetando o sistema. Recomendações: No momento, não há informações sobre uma versão mais recente que contenha uma correção para esta vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 117 Firefox ESR versions prior to 115.2 Thunderbird versions prior to 115.2 **Description** The issue is related to insufficient warning about potentially hazardous actions, allowing a remote attacker to download arbitrary files. Specifically, Excel `.xll` add-in files did not have a blocklist entry in Firefox's executable blocklist, which enabled them to be downloaded without warnings about their potential harm. **Recommendations** For Firefox versions prior to 117, update to version 117 or later to resolve the issue. For Firefox ESR versions prior to 115.2, update to version 115.2 or later to resolve the issue. For Thunderbird versions prior to 115.2, update to version 115.2 or later to resolve the issue.