Qadhafy Muhammad Tera

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 151 Thunderbird versions prior to 151 **Description** A spoofing issue exists within the Web Speech component.

**Name of the Vulnerable Software and Affected Versions** Google Chrome on iOS versions prior to 148.0.7778.96 **Description** Insufficient validation of untrusted input allows a remote attacker to perform UI spoofing, which is the act of mimicking a legitimate user interface to deceive users, via a crafted HTML page. **Recommendations** Update to version 148.0.7778.96 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 148.0.7778.96 **Description** An inappropriate implementation in the Speech component allows a remote attacker to perform UI spoofing, which is the act of mimicking a legitimate user interface to deceive users, via a crafted HTML page. **Recommendations** Update to version 148.0.7778.96 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox for iOS versions prior to 147.2.1 **Description** Malicious scripts interrupting new tab page loading can cause a mismatch between the address bar and page content. This allows an attacker to display fake HTML content while appearing to be from a trusted domain. **Recommendations** Update Firefox for iOS to version 147.2.1 or later.