CVE-2015-4494

Name of the Vulnerable Software and Affected Versions Mozilla Firefox OS versions prior to 2.2

Description The issue is related to the lack of protection for system messages in Firefox OS, allowing attackers to obtain potentially sensitive information via a crafted app. This could enable a remote attacker to access protected information contained in system messages.

Recommendations For Mozilla Firefox OS versions prior to 2.2, consider restricting access to system messages or disabling the ability to read these messages until a patch is available. As a temporary workaround, avoid using crafted apps that could exploit this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.