security warning from my Company's IT Department
hi, I assumed that I am allowed to use your latest version of Firefox browser at my work but have received company's email (not spam) today:
<<Please note you’ve been detected as being the user of a device running the Firefox browser. There have recently been critical vulnerabilities announced, and all versions of this software must be removed or updated to remediate these.
Please note Firefox is not "_ _ _ _ _ _ _ _ _ _ " approved software (both Edge and Chrome are supplied as standard), and unless there is a critical business reason (i.e. developing software that has to be tested on the Firefox browser) the software must be removed. The vulnerabilities in this software are of the highest severity, and if not remediated, devices will be isolated from the corporate network for protective purposes. If you require assistance removing, or updating this software please contact the IT Service Desk. Regards, _ _ _ _ _ _ _ _ _ _ _>> I don't like and never did using Edge or Chrome but now it seems I have no choice, unless Firefox improves its security critical vulnerabilities. Could you advise please if you have any alternative solution for me, and many others like me, or maybe there is more secured or light versions of Firefox available.
Kind Regards tank_t54@tuta.io
All Replies (2)
Hi, there was a vulnerability and we've released a fix as soon as possible like a week ago. It is fixed in Firefox 131.0.2, Firefox ESR 128.3.1, Firefox ESR 115.16.1.
You should update Firefox to the latest available version.
The Firefox UserAgent does not show the minor version of Firefox even if you were using a current update.
The UA you used to post this thread for example is Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/115.0
Even if you are using Fx 115.16.1esr it will still show as 115.0. Also it is possible the IT may not be aware that the older Firefox 115 ESR is still getting updates till at least 115.21.0esr in March 2025. Though the updates are for to support Windows 7, 8, 8.1 and macOS 10.12, 10.13, 10.14 in mind.
https://www.mozilla.org/firefox/releases/ As said the Firefox 131.0.3 (and not 131.0.2), Firefox ESR 128.3.1, Firefox ESR 115.16.1 are the current versions with security fixes.
I would argue that Firefox is just as secure if not more so compared to the closed source Edge and Chrome browsers they suggest you to use.
Athraithe ag James ar