Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

What exactly are these "security risks" which updating Firefox is supposed to fix? Any examples?

  • 3 replies
  • 1 has this problem
  • 1 view
  • Last reply by philipp

more options

I always hear about "security risks" and that I have to update Firefox to fix them. So what exactly are these security risks? What can I expect to happen if I don't update Firefox? If you can link to detailed descriptions about these risks, that's acceptable too.

I always hear about "security risks" and that I have to update Firefox to fix them. So what exactly are these security risks? What can I expect to happen if I don't update Firefox? If you can link to detailed descriptions about these risks, that's acceptable too.

All Replies (3)

more options

hi valentin, fixed security issues in firefox and the impact they may have get published on https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox/

more options

But what do these descriptions imply? How likely is the average user to encounter these attacks? Aren't you safe as long as you stick to opening trusted and safe links?

Modified by Valentin9265

more options

only sticking to "well-known" sites may lessen the likelihood of getting infected but it is no guarantee by far. as many sites include third party-content (due to advertising, or other purposes), it would be enough if one actor is getting compromised to do the damage and we have already seen exploits spreading this way many times: https://blog.malwarebytes.org/malvertising-2/2015/04/booby-trapped-hugo-boss-advert-spreads-cryptowall-ransomware/

there are also "exploit kits" out there which regularly update and "bundle" known vulnerabilities to increase the chance that visitors to a compromised site get infected.

short summary: please keep your browser fully patched (no matter which one you're using)!