Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR.

According to Mozilla, an attacker could exploit this vulnerability to take control of an affected system.

"Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw," Mozilla said.

The vulnerabilities wer fixed in Firefox 72.0.1 and Firefox ESR 68.4.1.

The Cybersecurity and Infrastructure Security Agency (CISA) said that users and administrators should review the Mozilla Security Advisory for Firefox 72.0.1 and Firefox ESR 68.4.1 and apply the necessary updates.