Security News > 2020 > April > Mozilla Patches Two Firefox Vulnerabilities Exploited in Attacks
2020-04-06 08:46
Mozilla has released updates for its Firefox web browser to patch two critical use-after-free vulnerabilities that have been exploited in attacks.
Both flaws have been addressed with the release of Firefox 74.0.1 and Firefox ESR 68.6.1.
Mozilla has credited researchers Francisco Alonso and Javier Marcos for reporting the vulnerabilities.
The U.S. Cybersecurity and Infrastructure Security Agency has advised users to update Firefox as soon as possible.
This is not the first round of zero-days fixed by Mozilla this year in Firefox.
News URL
Related news
- Mozilla fixes Firefox zero-day actively exploited in attacks (source)
- CUPS vulnerabilities could be abused for DDoS attacks (source)
- Firefox Zero-Day Under Attack: Update Your Browser Immediately (source)
- Mozilla patches critical Firefox vuln that attackers are already exploiting (source)
- OvrC Platform Vulnerabilities Expose IoT Devices to Remote Attacks and Code Execution (source)