Multiple critical vulnerabilities have been identified in Mozilla Firefox, Firefox ESR, and Thunderbird that could permit attackers to execute arbitrary code on affected systems. Successful exploitation could grant adversaries the ability to install malware, exfiltrate data, modify files, or establish new administrative accounts depending on the targeted user’s privilege level.

Why it matters in Western Canada: Western Canadian public sector, post-secondary, healthcare, and financial organizations commonly deploy Firefox and Thunderbird across their user base. Exploitation could compromise sensitive data subject to FIPPA regulations and disrupt critical operations.

---

Summary generated from the original advisory. Read the full source: ms-isac