The executable file warning was not presented when downloading .msix, .msixbundle, .appx, and .appxbundle files, which can run commands on a user’s computer.
Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 119, Firefox ESR < 115.4, and Thunderbird < 115.4.1.
CPE | Name | Operator | Version |
---|---|---|---|
firefox | lt | 119.0 | |
firefox_esr | lt | 115.4 | |
thunderbird | lt | 115.4.1 |