Zarro Boogs

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 138 Thunderbird versions prior to 138 **Description** The issue arises from insufficient escaping of special characters in the "copy as cURL" feature. This could allow an attacker to trick a user into executing a command, potentially leading to local code execution on the user's system. **Recommendations** For Firefox versions prior to 138, update to version 138 or later to resolve the issue. For Thunderbird versions prior to 138, update to version 138 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 138 Thunderbird versions prior to 138 **Description** Memory safety bugs are present in certain versions of Firefox and Thunderbird, showing evidence of memory corruption. It is presumed that with enough effort, some of these bugs could be exploited to run arbitrary code. **Recommendations** For Firefox versions prior to 138, update to version 138 or later. For Thunderbird versions prior to 138, update to version 138 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 135 Thunderbird versions prior to 135 **Description** Memory safety bugs are present in Firefox and Thunderbird, with evidence of memory corruption. It is presumed that with enough effort, some of these bugs could be exploited to run arbitrary code. **Recommendations** For Firefox versions prior to 135, update to version 135 or later to resolve the issue. For Thunderbird versions prior to 135, update to version 135 or later to resolve the issue.