Tom Ritter

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 149 Firefox ESR versions prior to 115.34 Firefox ESR versions prior to 140.9 Thunderbird versions prior to 149 Thunderbird versions prior to 140.9 **Description** A sandbox escape issue exists in the Responsive Design Mode component. This allows a malicious actor to potentially bypass security restrictions. **Recommendations** Update Firefox to version 149 or later. Update Firefox ESR to version 115.34 or later. Update Firefox ESR to version 140.9 or later. Update Thunderbird to version 149 or later. Update Thunderbird to version 140.9 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 115 Firefox ESR versions prior to 102.13 Thunderbird versions prior to 102.13 **Description** The issue is related to memory safety bugs, which have shown evidence of memory corruption. It is presumed that with sufficient effort, some of these bugs could be exploited to run arbitrary code. The vulnerability is associated with a buffer overflow in memory, allowing a remote attacker to potentially execute arbitrary code. **Recommendations** For Firefox versions prior to 115, update to version 115 or later. For Firefox ESR versions prior to 102.13, update to version 102.13 or later. For Thunderbird versions prior to 102.13, update to version 102.13 or later.

**Nome do software vulnerável e versões afetadas** Versões do Firefox anteriores à 102 **Descrição** Existe uma falha de segurança em que um iframe em sandbox com o atributo `allow-top-navigation-by-user-activation` ainda pode processar cabeçalhos de redirecionamento para protocolos externos, o que pode solicitar a confirmação do usuário. **Recomendações** Para versões do Firefox anteriores à 102, atualize para a versão 102 ou posterior para resolver o problema.

**Nome do software vulnerável e versões afetadas** Versões do Firefox anteriores à 100 Versões do Firefox ESR anteriores à 91.9 Versões do Thunderbird anteriores à 91.9 **Descrição** O problema está relacionado a falhas de segurança de memória e estouro de buffer durante o processamento de conteúdo HTML, o que poderia permitir que um invasor remoto executasse código arbitrário ou causasse uma negação de serviço por meio de uma página da Web especialmente criada para esse fim. Alguns desses bugs apresentaram evidências de corrupção de memória. **Recomendações** Para versões do Firefox anteriores à 100, atualize para a versão 100 ou posterior. Para versões do Firefox ESR anteriores à 91.9, atualize para a versão 91.9 ou posterior. Para versões do Thunderbird anteriores à 91.9, atualize para a versão 91.9 ou posterior.

**Nome do software vulnerável e versões afetadas: Versões do Firefox anteriores à 87 Descrição: A vulnerabilidade permite que um invasor ative o recurso de depuração remota do Devtools sem que o usuário perceba, potencialmente alterando valores específicos do about:config, como aqueles modificados por malware em execução no computador do usuário. Isso poderia permitir que um invasor remoto, capaz de estabelecer uma conexão de rede direta com a vítima, monitorasse a atividade de navegação do usuário e o tráfego de rede em texto simples. Uma indicação visual foi introduzida no Devtools quando ele possui um soquete de rede aberto para resolver essa vulnerabilidade. Recomendações: Para versões do Firefox anteriores à 87, atualize para a versão 87 ou posterior para resolver o problema. Como solução temporária, considere desativar o recurso de depuração remota do Devtools até que a atualização possa ser aplicada. Restrinja o acesso aos valores do about:config para minimizar o risco de exploração.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 69 Firefox ESR versions prior to 68.1 **Description** The issue is related to a buffer overflow due to unchecked input size, which could allow a remote attacker to gain unauthorized access to information and compromise its integrity and availability. There are memory safety bugs present, some of which show evidence of memory corruption, and it is presumed that these could be exploited to run arbitrary code with enough effort. **Recommendations** For Firefox versions prior to 69, update to version 69 or later to resolve the issue. For Firefox ESR versions prior to 68.1, update to version 68.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 56 Firefox ESR versions prior to 52.4 Thunderbird versions prior to 52.4 **Description** The issue is related to memory safety bugs, including evidence of memory corruption, which could potentially be exploited to run arbitrary code. This is due to a buffer overflow in memory, allowing a remote attacker to execute arbitrary code. **Recommendations** For Firefox versions prior to 56, update to version 56 or later. For Firefox ESR versions prior to 52.4, update to version 52.4 or later. For Thunderbird versions prior to 52.4, update to version 52.4 or later.

**Name of the Vulnerable Software and Affected Versions** Verizon Wireless Network Extender SCS-26UC4 (affected versions not specified) **Description** The issue allows physically proximate attackers to obtain root access by connecting a crafted HDMI cable and using a sys session to modify the `ramboot` environment variable. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Verizon Wireless Network Extender SCS-2U01 **Description** The issue concerns a hardcoded password for the `root` account in the device, making it easier for attackers with physical access to obtain administrative access by leveraging a login prompt. **Recommendations** For Verizon Wireless Network Extender SCS-2U01, consider changing the hardcoded password for the `root` account to a unique and strong password to prevent unauthorized access. As a temporary workaround, restrict physical access to the device to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Verizon Wireless Network Extender SCS-2U01 (affected versions not specified) **Description** The issue allows physically proximate attackers to bypass the intended boot process and obtain a login prompt by connecting a crafted HDMI cable and sending a SysReq interrupt. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.