The Indian Computer Emergency Response Team (CERT-In), which previously alerted users to problems in Google Chrome for desktop, is now alerting users about a number of vulnerabilities in Mozilla Firefox products that might allow hackers to infiltrate systems and devices.
According to CERT-most In’s recent alert, the defects in the Mozilla Firefox browser might enable a remote attacker to get around security measures, execute arbitrary code, and launch a denial of service attack on the targeted machine.
The cyber agency stated that the defects in the browser engine’s memory safety and cross-origin iframes that reference XSLT documents and cause use-after-free errors are to blame for the vulnerabilities in Mozilla Firefox.
By persuading a victim to open a specially created web request, a remote attacker might take advantage of these vulnerabilities.
The IT Ministry’s CERT-In organisation urged users to update to the most recent Mozilla Firefox releases.
A flaw in Drupal, an open source coding platform, was also discovered by CERT-In. This flaw might allow an attacker to get around security measures on the targeted system.
It cautioned that “successful exploitation of this issue might allow an attacker to overcome security constraints on the targeted system (leak legitimate payment data and accept incorrect payment details).”
The cyber agency issued a warning to consumers last week regarding a number of vulnerabilities in Google Chrome for desktop that might allow threat actors to access users’ machines.