TR-21-0519 (Mozilla Firefox Zafiyeti)

Genel Bilgi

Mozilla Firefox ve Firefox ESR'de, XSS ve Uzaktan Kod Çalıştırma zafiyetleri tespit edilmiştir.

Etki

Mevcut güvenlik zafiyetleri nedeniyle etkilenen sistemlerin siber saldırganlar tarafından ele geçirilmesi ihtimal dahilindedir. CVE kodları şöyledir:

CVE-2021-29962, CVE-2021-23994, CVE-2021-23998, CVE-2021-23999, CVE-2021-24000, CVE-2021-29944, CVE-2021-29953, CVE-2021-29958, CVE-2021-29959, CVE-2021-29960, CVE-2021-29963, CVE-2021-29964, CVE-2021-29965, CVE-2021-29966, CVE-2021-29967 ve CVE-2021-29968

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM), kullanıcı ve sistem yöneticilerine; Mozilla tarafından yayınlanan Firefox ve Firefox ESR güvenlik önerilerini incelemelerini ve gerekli güncellemeleri yapmalarını tavsiye etmektedir.

Kaynaklar

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23994

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23998

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23999

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-24000

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-29944

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-29953

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-29958

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-29959

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-29960

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-29962

2021-06-25