firefox is vulnerable to Command Injection. The vulnerability causes improper handling of ‘.desktop’ downloads on certain linux distributions.This can lead to executing attacker-controlled commands on the device.
git://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2023-29541
bugzilla.mozilla.org/show_bug.cgi?id=1810191
www.mozilla.org/en-US/security/advisories/mfsa2023-13/#CVE-2023-29547
www.mozilla.org/security/advisories/mfsa2023-13/
www.mozilla.org/security/advisories/mfsa2023-14/
www.mozilla.org/security/advisories/mfsa2023-15/