If you use Mozilla Firefox, take note. The Indian Computer Emergency Response Team (CERT-In), under the Ministry of Electronics and Information Technology (MeitY), has issued a serious security alert about several vulnerabilities in Firefox and Firefox ESR versions before 140. These flaws could let attackers access your data, run malicious code, and bypass security measures. Mozilla has released updates to fix these issues, so users are strongly advised to update their browsers immediately to stay protected.

Figure 1. Firefox Users Alert: Govt Flags Critical Bugs

If exploited, these vulnerabilities could let attackers access your sensitive information without permission, run malicious code, bypass security protections, and gain higher system privileges. Below are the details on who is vulnerable and which Firefox versions are affected. Figure 1 shows Firefox Users Alert: Govt Flags Critical Bugs.

Which Versions Are Affected?

According to vulnerability note CIVN-2025-0138, the advisory impacts Mozilla Firefox versions earlier than 140, Firefox ESR versions earlier than 115.25, and Firefox ESR versions earlier than 128.12.

Who Is Vulnerable?

Anyone using Mozilla Firefox or its ESR versions is at risk and should act promptly. These vulnerabilities are particularly dangerous for enterprises handling large-scale operations and extensive data access.

Details of the Vulnerabilities

CERT-In reports that these vulnerabilities arise from memory corruption and improper processing of certain web requests. An attacker could exploit them by luring a user to a malicious website. If triggered, the exploit could lead to unauthorized access to sensitive information, execution of arbitrary code, bypassing security measures, and escalation of system privileges.

How to Protect Yourself?

CERT-In urges users and system administrators to promptly install the latest security patches from Mozilla. To fix these vulnerabilities, Mozilla has released security advisories and software updates. Detailed instructions and version information are available on Mozilla’s official security portal.

References:

1. https://www.digit.in/news/general/mozilla-firefox-users-beware-govt-flags-critical-security-bugs-in-browser-heres-how-to-stay-safe.html

Cite this article:

Janani R (2025), Mozilla Firefox Users, Beware! Government Alerts on Critical Browser Security Flaws — How to Protect Yourself, AnaTechMaz, pp. 278