Satoki Tsuji

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 151 Thunderbird versions prior to 151 **Description** A spoofing issue exists within the Popup Blocker component. **Recommendations** Update to version 151.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 151 Firefox ESR versions prior to 115.36 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 **Description** A use-after-free issue exists in the DOM: Bindings (WebIDL) component. Use-after-free is a memory corruption flaw that occurs when an application continues to use a pointer after it has been freed. **Recommendations** Update Firefox to version 151. Update Firefox ESR to version 115.36. Update Firefox ESR to version 140.11. Update Thunderbird to version 151. Update Thunderbird to version 140.11.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 150 Thunderbird versions prior to 150 **Description** A mitigation bypass exists in the Networking: Cookies component. **Recommendations** Update Firefox to version 150. Update Thunderbird to version 150.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 149 Firefox ESR versions prior to 140.9 Thunderbird versions prior to 149 Thunderbird versions prior to 140.9 **Description** A privilege escalation issue exists in the Netmonitor component. This allows for potential unauthorized access or control within the affected applications. **Recommendations** Update Firefox to version 149 or later. Update Firefox ESR to version 140.9 or later. Update Thunderbird to version 149 or later. Update Thunderbird to version 140.9 or later.

**Name of the Vulnerable Software and Affected Versions** TkEasyGUI versions prior to 1.0.22 **Description** An OS Command Injection issue exists in TkEasyGUI. If exploited, an unauthenticated remote attacker may execute arbitrary OS commands if the settings are configured to construct messages from external sources. **Recommendations** Update TkEasyGUI to version 1.0.22 or later.

**Name of the Vulnerable Software and Affected Versions** TkEasyGUI versions prior to 1.0.22 **Description** An uncontrolled search path element issue exists that may lead to arbitrary code execution with the privileges of the running program. **Recommendations** Update TkEasyGUI to version 1.0.22 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 139 **Description** The issue involves previewing a response in Devtools ignoring CSP headers, potentially allowing content injection attacks. **Recommendations** For versions prior to 139, update to version 139 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 131 Firefox ESR versions prior to 128.3 Thunderbird versions prior to 128.3 Thunderbird versions prior to 131 **Description** This issue is related to the `window.open` function in Mozilla browsers, which can lead to information disclosure through inconsistency. An attacker could determine if an application that implements a specific protocol handler is installed by checking the result of calls to `window.open` with specifically set protocol handlers. This could allow a remote attacker to gain unauthorized access to protected information. **Recommendations** For Firefox versions prior to 131, update to version 131 or later to resolve the issue. For Firefox ESR versions prior to 128.3, update to version 128.3 or later to resolve the issue. For Thunderbird versions prior to 128.3, update to version 128.3 or later to resolve the issue. For Thunderbird versions prior to 131, update to version 131 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `window.open` function with specifically set protocol handlers until a patch is available.

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 127 Firefox ESR versions prior to 115.12 Thunderbird versions prior to 115.12 Description: The issue is related to the use of hidden side channels, allowing an attacker to potentially guess which external protocol handlers are functional on a user's system by monitoring the time certain operations take. This could enable a remote attacker to gain unauthorized access to protected information. Recommendations: For Firefox versions prior to 127, update to version 127 or later. For Firefox ESR versions prior to 115.12, update to version 115.12 or later. For Thunderbird versions prior to 115.12, update to version 115.12 or later.

**Name of the Vulnerable Software and Affected Versions** Nako3edit versions 3.3.74 and earlier **Description** The issue allows a remote attacker to obtain the appkey of the product and execute an arbitrary OS command on the product. This is due to an OS command injection vulnerability in the editor component of nadesiko3 (PC Version). **Recommendations** For versions 3.3.74 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nako3edit versions 3.3.74 and earlier **Description** The issue is related to an improper check or handling of exceptional conditions in the Nako3edit component, which is part of the Nadeshiko 3 programming language. This allows a remote attacker to inject an invalid value into the `decodeURIComponent` function of Nako3edit. As a result, the server may crash. **Recommendations** For versions 3.3.74 and earlier, consider disabling the `decodeURIComponent` function in Nako3edit as a temporary workaround until a patch is available. Restrict access to the Nako3edit component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nadesiko3 (PC Version) versions 3.3.61 and earlier Nadesiko3 (PC Version) versions 3.3.68 and earlier **Description** The issue allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product. Release notes for versions 3.3.62 and 3.3.69 link to patches for this issue, and the JPCERT/CC advisory lists versions 3.3.68 and prior as vulnerable, with the most recent patch tagged with version 3.3.69. **Recommendations** For versions 3.3.61 and earlier, update to version 3.3.69 or later to resolve the issue. For versions 3.3.62 through 3.3.68, update to version 3.3.69 or later to resolve the issue. As a temporary workaround, consider restricting access to compression and decompression functionality until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 105 Firefox ESR versions prior to 102.3 Thunderbird versions prior to 102.3 **Description** The issue is related to an incorrect restriction of visualizable layers or frames in the user interface when handling HTML elements, specifically with the implementation of the Content Security Policy (CSP) `base-uri` directive in browsers. This can allow a remote attacker to bypass security restrictions by injecting an HTML base element, which some requests would accept instead of the CSP's `base-uri` settings. **Recommendations** For Firefox versions prior to 105, update to version 105 or later to resolve the issue. For Firefox ESR versions prior to 102.3, update to version 102.3 or later to resolve the issue. For Thunderbird versions prior to 102.3, update to version 102.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** CSV+ versions prior to 0.8.1 **Description** A cross-site scripting issue allows a remote unauthenticated attacker to inject an arbitrary script or an arbitrary OS command via a specially crafted CSV file that contains an HTML `a` tag. **Recommendations** For versions prior to 0.8.1, update to version 0.8.1 or later to resolve the issue. As a temporary workaround, consider restricting the import of CSV files from untrusted sources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** KonaWiki versions 3.1.0 and earlier **Description** A cross-site scripting issue allows remote attackers to execute an arbitrary script via a specially crafted URL. **Recommendations** For versions 3.1.0 and earlier, update to a version later than 3.1.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** KonaWiki versions 3.1.0 and earlier **Description** A directory traversal issue allows remote attackers to read arbitrary files. **Recommendations** For versions 3.1.0 and earlier, update to a version later than 3.1.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** KonaWiki versions 2.2.0 and earlier **Description** A cross-site scripting issue allows remote attackers to execute an arbitrary script via a specially crafted URL. **Recommendations** For versions 2.2.0 and earlier, update to a version later than 2.2.0 to resolve the issue.