Security News > 2020 > January > Mozilla Patches Firefox Zero-Day Exploited in Targeted Attacks
Updates released by Mozilla on Wednesday for its Firefox browser address a zero-day vulnerability that has been exploited in targeted attacks.
Mozilla says it's aware of targeted attacks exploiting this zero-day, but no other information has been made available.
The flaw has been patched with the release of Firefox 72.0.1 and Firefox ESR 68.4.1, and users have been advised to update their installations.
Mozilla last year patched two Firefox zero-day vulnerabilities that had been exploited to deliver Mac malware to cryptocurrency exchanges.
Firefox 72 also patches nearly a dozen vulnerabilities, including 5 rated high severity.
News URL
Related news
- Google fixes Android kernel zero-day exploited in targeted attacks (source)
- “Perfect” Windows downgrade attack turns fixed vulnerabilities into zero-days (source)
- 18-year-old security flaw in Firefox and Chrome exploited in attacks (source)
- Microsoft fixes 6 zero-days under active attack (source)
- Google fixes ninth Chrome zero-day exploited in attacks this year (source)
- Week in review: PostgreSQL databases under attack, new Chrome zero-day actively exploited (source)
- Versa fixes Director zero-day vulnerability exploited in attacks (source)
- Windows vulnerability abused braille “spaces” in zero-day attacks (source)
- Mozilla Faces Privacy Complaint for Enabling Tracking in Firefox Without User Consent (source)
- Mozilla accused of tracking users in Firefox without consent (source)