The Mozilla Foundation has patched vulnerabilities in Firefox for Android 88.1.3 and Firefox 88.0.1.
An attacker could exploit the vulnerability to take control of impacted systems.
As part of Mozilla Foundation Security Advisory 2021-20, Firefox for Android 88.1.3 addressed one Critical ‘Universal Cross-Site Scripting’ vulnerability CVE-2021-29953.
“A malicious webpage could have forced a Firefox for Android user into executing attacker-controlled JavaScript in the context of another domain, resulting in a Universal Cross-Site Scripting vulnerability,” Mozilla noted in the advisory.
Moreover, the Firefox 88.0.1 security update patched one High risk ‘Race condition in Web Render Components’ vulnerability CVE-2021-29952.