Rewterz Threat Advisory - Multiple Mozilla Firefox Vulnerabilities - #CVE-2023-37201
On July 6th, 2023, Mozilla released patches for 12 critical vulnerabilities in Firefox that allowed attackers to execute arbitrary code, conduct spoofing or information disclosure attacks. The vulnerabilities included memory corruptions in the browser engine allowing code execution, lack of validation in fullscreen mode and drag-and-drop feature enabling spoofing, improper handling of symlinks enabling symlink attacks, and information disclosure through local storage. Users were urged to update Firefox immediately to the latest version to patch these critical security flaws.