Multiple vulnerabilities have been identified in Mozilla products, potentially allowing attackers to compromise data confidentiality, bypass security policies, and exploit an unspecified security issue. Affected systems include Thunderbird versions prior to 140.7.1 and 147.0.1, as well as Firefox versions before 147.0.2. Mozilla has issued three security advisories (mfsa2026-06, mfsa2026-07, mfsa2026-08) detailing the vulnerabilities and providing patches. The advisories reference three CVE identifiers: CVE-2026-0818, CVE-2026-24868, and CVE-2026-24869. Users are advised to consult the official Mozilla security bulletins for detailed remediation instructions. The CERT-FR advisory (CERTFR-2026-AVI-0095) highlights the risks but does not specify additional mitigation measures beyond applying available updates.
Summary of content from
https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0095/
Made by AI. If you spot anything of concern write us at contact@cybach.com. We’ll promptly correct irregularities.