Yaqoub Aldurayhim

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 152 Firefox ESR versions prior to 140.12 Thunderbird versions prior to 152 Thunderbird versions prior to 140.12 **Description** A sandbox escape exists within the Security: Process Sandboxing component. A sandbox is a security mechanism for separating running programs, usually in an effort to mitigate the impact of a vulnerability by restricting the program's access to the rest of the system. **Recommendations** Update Firefox to version 152. Update Firefox ESR to version 140.12. Update Thunderbird to version 152. Update Thunderbird to version 140.12.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 152 Firefox ESR versions prior to 140.12 Thunderbird versions prior to 152 Thunderbird versions prior to 140.12 **Description** A memory safety bug exists in the software, which could lead to unexpected behavior or crashes when handling memory operations. **Recommendations** Update Firefox to version 152. Update Firefox ESR to version 140.12. Update Thunderbird to version 152. Update Thunderbird to version 140.12.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 152 Firefox ESR versions prior to 140.12 Thunderbird versions prior to 152 Thunderbird versions prior to 140.12 **Description** An information disclosure and sandbox escape issue exists within the Security: Process Sandboxing component. A sandbox escape occurs when a process bypasses the restricted environment designed to isolate it from the rest of the system. **Recommendations** Update Firefox to version 152. Update Firefox ESR to version 140.12. Update Thunderbird to version 152. Update Thunderbird to version 140.12.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 152 Firefox ESR versions prior to 140.12 Firefox ESR versions prior to 115.37 Thunderbird versions prior to 152 Thunderbird versions prior to 140.12 **Description** A sandbox escape exists within the DOM Navigation component. A sandbox is a security mechanism for separating running programs, ensuring that code in a restricted environment cannot access sensitive system resources. **Recommendations** Update Firefox to version 152. Update Firefox ESR to version 140.12. Update Firefox ESR to version 115.37. Update Thunderbird to version 152. Update Thunderbird to version 140.12.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 152 Firefox ESR versions prior to 140.12 Thunderbird versions prior to 152 Thunderbird versions prior to 140.12 **Description** A same-origin policy bypass exists in the Networking: Cookies component. The same-origin policy is a critical security mechanism that restricts how a document or script loaded from one origin can interact with a resource from another origin. **Recommendations** Update Firefox to version 152. Update Firefox ESR to version 140.12. Update Thunderbird to version 152. Update Thunderbird to version 140.12.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 **Description** An issue in the Security: Process Sandboxing component allows for information disclosure and sandbox escape. A sandbox is a security mechanism for separating running programs, ensuring that code in one process cannot access memory or resources of another. **Recommendations** Update to version 151 Update to version 140.11 Update to version 151 Update to version 140.11

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 **Description** An integer overflow exists in the Networking: JAR component. An integer overflow occurs when an arithmetic operation attempts to create a numeric value that is too large to be represented within the available storage area. **Recommendations** Update Firefox to version 151. Update Firefox ESR to version 140.11. Update Thunderbird to version 151. Update Thunderbird to version 140.11.