Security News > 2016 > September > Mozilla Patching Firefox Certificate Pinning Vulnerability (Threatpost)

Mozilla Patching Firefox Certificate Pinning Vulnerability (Threatpost)

2016-09-19 20:03

Mozilla is expected tomorrow to patch a critical certificate pinning vulnerability in Firefox’s automated update process for extensions.

News URL

http://threatpost.com/mozilla-patching-firefox-certificate-pinning-vulnerability/120694/

#firefox #mozilla #vulnerability #certificate #threatpost

Related news

Mozilla warns users to update Firefox before certificate expires (source)
Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
Mozilla Updates Firefox Terms Again After Backlash Over Broad Data License Language (source)
Mozilla Revises Firefox Terms of Use After Inflaming Users Over Data Usage (source)
WARNING: Expiring Root Certificate May Disable Firefox Add-Ons, Security Features, and DRM Playback (source)
Mozilla warns Windows users of critical Firefox sandbox escape flaw (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Mozilla		29	14	638	592	271	1515

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.