Chriscla

**Name of the Vulnerable Software and Affected Versions** Mozilla Thunderbird versions prior to 91.4.0 Mozilla Firefox ESR versions prior to 91.4.0 Mozilla Firefox versions prior to 95 **Description** The issue is related to insufficient input validation, allowing a remote attacker to bypass security restrictions using a specially crafted link. When invoking protocol handlers for external protocols, a supplied parameter URL containing spaces was not properly escaped. **Recommendations** For Mozilla Thunderbird versions prior to 91.4.0, update to version 91.4.0 or later. For Mozilla Firefox ESR versions prior to 91.4.0, update to version 91.4.0 or later. For Mozilla Firefox versions prior to 95, update to version 95 or later.