Rewterz

Rewterz Threat Alert – Donot APT group – IOCs

February 24, 2021
Rewterz

Rewterz Threat Advisory – Multiple VMware Security Vulnerabilities

February 24, 2021

Rewterz Threat Advisory – CVE-2021-23975 – Mozilla Firefox Security Bypass

Severity

Medium

Analysis Summary

CVE-2021-23975

Mozilla Firefox could allow a remote attacker to bypass security restrictions, caused by the failure to correctly call the sizeof function, instead of using the API method that checks for invalid pointers. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to bypass security restrictions.

Impact

Bypass Security

Affected Vendors

Mozilla

Affected Products

Mozilla Firefox 85

Remediation

Refer to Mozilla advisory for the updated patches and complete list of affected products.

Mozilla Foundation Security Advisory 2021-07

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.