Sandbox escape in the Profile Backup component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11.
The error classified as CWE-693 (Protection Mechanism Failure) indicates the ineffectiveness of the protection mechanism — in this case the sandbox. An attacker can exploit the vulnerability in the Profile Backup component to escape from the restricted browser execution environment. The attack can be conducted remotely, without authentication and without any user interaction, which makes it particularly dangerous.
Successful exploitation of the vulnerability allows an attacker to escape from the browser sandbox, which may lead to obtaining unauthorized access to the operating system, violating data confidentiality and integrity, and destabilizing system operation.
The software must be immediately updated to Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11 or Thunderbird 140.11, in which the vulnerability has been patched by the vendor.
Mozilla Firefox in versions before 150.0.3, Mozilla Firefox ESR in versions before 115.36 and before 140.11, Mozilla Thunderbird in versions before 140.11.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HMozilla Firefox
APPMozilla< 150.0.3
Related vulnerabilities
Use-after-free w Animation timelines Firefox/Thunderbird — RCE
An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escap...
Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes ...
Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before...
Memory safety bugs present in Firefox 152.0.3. Some of these bugs showed evidence of memory corruption and we ...