Maryam Mehrnezhad

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 46.0 on Android **Description** The issue allows remote attackers to obtain sensitive information about a device's physical environment, and possibly discover PIN values, via a crafted web site. This is due to improper restriction of JavaScript access to orientation and motion data. **Recommendations** For Mozilla Firefox versions prior to 46.0 on Android, update to version 46.0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 9.3 **Description** The issue allows remote attackers to obtain sensitive information about a device's physical environment via a crafted web site, by exploiting a lack of protection for certain data in the WebKit component. This could potentially reveal confidential information about the device. **Recommendations** For iOS versions prior to 9.3, update to iOS 9.3 or later to resolve the issue.