Riccardo Ancarani

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 78 **Description** The issue is related to the Windows DLL "webauthn.dll". If this DLL is missing from the Operating System and a malicious version is placed in a folder in the user's %PATH%, Firefox may load the malicious DLL, leading to arbitrary code execution. This issue only affects the Windows operating system. **Recommendations** For versions prior to 78, update to version 78 or later to resolve the issue. As a temporary workaround, consider restricting access to the `webauthn.dll` file to minimize the risk of exploitation. Additionally, ensure that only trusted DLLs are placed in folders within the user's %PATH%.