mozilla firefox is vulnerable to arbitrary code execution. Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion.

CPENameOperatorVersion
firefoxeq60.7.2__1.el6.centos
firefoxeq38.0.1__1.ael7b_1
firefoxeq10.0.8__1.el6_3
firefoxeq38.5.0__2.el6_7
firefoxeq60.6.0__3.el7.centos
firefoxeq60.3.0__1.el6.centos
firefoxeq60.5.0__2.el7.centos
firefoxeq45.7.0__1.el6_8
firefoxeq38.4.0__1.el6_7
firefoxeq17.0.6__1.el6_4

Name	Operator	Version
firefox	eq	60.7.2__1.el6.centos
firefox	eq	38.0.1__1.ael7b_1
firefox	eq	10.0.8__1.el6_3
firefox	eq	38.5.0__2.el6_7
firefox	eq	60.6.0__3.el7.centos
firefox	eq	60.3.0__1.el6.centos
firefox	eq	60.5.0__2.el7.centos
firefox	eq	45.7.0__1.el6_8
firefox	eq	38.4.0__1.el6_7
firefox	eq	17.0.6__1.el6_4

Rows per page:

1-10 of 5181

References

packetstormsecurity.com/files/162568/Firefox-72-IonMonkey-JIT-Type-Confusion.html

access.redhat.com/errata/RHSA-2020:0086

access.redhat.com/security/updates/classification/#critical

bugzilla.mozilla.org/show_bug.cgi?id=1607443

security.gentoo.org/glsa/202003-02

usn.ubuntu.com/4335-1/

www.mozilla.org/en-US/security/advisories/mfsa2020-02/

www.mozilla.org/security/advisories/mfsa2020-03/

www.mozilla.org/security/advisories/mfsa2020-04/

cvelist 1

debian 5

openvas 30

cisa 1

debiancve 1

cisa_kev 1

nvd 1

symantec 1

archlinux 2

nessus 58

mozilla 2

avleonov 1

redhatcve 1

prion 1

checkpoint_advisories 1

osv 4

thn 1

kaspersky 3

ubuntucve 1

alpinelinux 1

cve 1

attackerkb 1

zdt 2

packetstorm 2

exploitdb 2

githubexploit 1

talosblog 1

redhat 8

oraclelinux 6

mageia 2

centos 4

threatpost 1

amazon 1

slackware 1

suse 2

altlinux 1

ubuntu 3

photon 1

securelist 1

gentoo 1

qualysblog 1

cvelist

CVE-2019-17026

2020-03-02 04:05:03

debian

[SECURITY] [DLA 2093-1] firefox-esr security update

2020-02-01 04:15:49

[SECURITY] [DLA 2061-1] firefox-esr security update

2020-01-09 10:22:20

[SECURITY] [DSA 4603-1] thunderbird security update

2020-01-17 21:40:41

openvas

Debian: Security Advisory (DLA-2093-1)

2020-02-02 00:00:00

Mozilla Firefox Security Advisory (MFSA2020-03) - Linux

2021-11-08 00:00:00

Mozilla Firefox ESR Security Advisories (MFSA2020-03, MFSA2020-03) - Windows

2020-01-09 00:00:00

cisa

Mozilla Patches Critical Vulnerability

2020-01-08 00:00:00

debiancve

CVE-2019-17026

2020-03-02 05:15:12

cisa_kev

Mozilla Firefox And Thunderbird Type Confusion Vulnerability

2021-11-03 00:00:00

nvd

CVE-2019-17026

2020-03-02 05:15:12

symantec

Mozilla Firefox and Firefox ESR CVE-2019-17026 Type Confusion Remote Code Execution Vulnerability

2020-01-08 00:00:00

archlinux

[ASA-202001-3] firefox: arbitrary code execution

2020-01-10 00:00:00

[ASA-202001-4] thunderbird: multiple issues

2020-01-14 00:00:00

nessus

Mozilla Firefox < 72.0.1

2020-01-08 00:00:00

Mozilla Firefox ESR < 68.4.1

2020-01-08 00:00:00

Mozilla Firefox ESR < 68.4.1

2020-01-08 00:00:00

mozilla

Security Vulnerabilities fixed in Firefox 72.0.1 and Firefox ESR 68.4.1 — Mozilla

2020-01-08 00:00:00

Security Vulnerabilities fixed in Thunderbird 68.4.1 — Mozilla

2020-01-10 00:00:00

avleonov

0day RCE in Firefox

2020-01-12 02:06:26

redhatcve

CVE-2019-17026

2020-01-09 05:09:01

prion

Type confusion

2020-03-02 05:15:00

checkpoint_advisories

Mozilla Firefox IonMonkey JIT Compiler Type Confusion (CVE-2019-17026)

2022-02-21 00:00:00

osv

firefox-esr - security update

2020-02-01 00:00:00

firefox-esr - security update

2020-01-09 00:00:00

thunderbird - security update

2020-01-20 00:00:00

thn

Critical Firefox 0-Day Under Active Attacks – Update Your Browser Now!

2020-01-09 10:34:00

kaspersky

KLA11630 Type confusion vulnerability in Mozilla Firefox

2020-01-08 00:00:00

KLA11631 Type confusion vulnerability in Mozilla Firefox ESR

2020-01-08 00:00:00

KLA11635 Multiple vulnerabilities in Mozilla Thunderbird

2020-01-10 00:00:00

ubuntucve

CVE-2019-17026

2020-01-09 00:00:00

alpinelinux

CVE-2019-17026

2020-03-02 05:15:12

cve

CVE-2019-17026

2020-03-02 05:15:12

attackerkb

CVE-2019-17026

2020-03-02 00:00:00

zdt

Mozilla Firefox 72 IonMonkey - JIT Type Confusion Exploit

2021-05-13 00:00:00

Mozilla Firefox 67 - Array.pop JIT Type Confusion Exploit

2022-02-02 00:00:00

packetstorm

Firefox 72 IonMonkey JIT Type Confusion

2021-05-13 00:00:00

Mozilla Firefox 67 Array.pop JIT Type Confusion

2022-02-02 00:00:00

exploitdb

Firefox 72 IonMonkey - JIT Type Confusion

2021-05-13 00:00:00

Mozilla Firefox 67 - Array.pop JIT Type Confusion

2022-02-02 00:00:00

githubexploit

Exploit for Type Confusion in Mozilla Firefox

2020-08-27 19:32:07

talosblog

Threat Source newsletter (Jan. 9, 2019)

2020-01-10 07:13:41

redhat

(RHSA-2020:0120) Important: thunderbird security update

2020-01-16 10:45:20

(RHSA-2020:0085) Critical: firefox security update

2020-01-13 13:06:23

(RHSA-2020:0086) Critical: firefox security update

2020-01-13 13:06:35

oraclelinux

thunderbird security update

2020-07-07 00:00:00

thunderbird security update

2020-01-16 00:00:00

firefox security update

2020-01-15 00:00:00

mageia

Updated thunderbird packages fix security vulnerabilities

2020-01-12 02:52:04

Updated firefox packages fix security vulnerability

2020-01-09 23:11:02

centos

thunderbird security update

2020-01-18 14:41:32

firefox security update

2020-01-14 17:25:32

firefox security update

2020-01-15 14:45:49

threatpost

Mozilla Updates Firefox Browser: Zero-Day Bug Patched, Fingerprinting Nixed

2020-01-08 18:04:42

amazon

Important: thunderbird

2020-02-10 23:43:00

slackware

[slackware-security] mozilla-thunderbird

2020-01-11 00:19:13

suse

Security update for MozillaFirefox (important)

2020-01-15 00:00:00

Security update for MozillaThunderbird (important)

2020-01-22 00:00:00

altlinux

Security fix for the ALT Linux 10 package thunderbird version 68.4.1-alt1

2020-01-11 00:00:00

ubuntu

Firefox vulnerabilities

2020-01-09 00:00:00

Thunderbird vulnerabilities

2020-01-16 00:00:00

Thunderbird vulnerabilities

2020-04-21 00:00:00

photon

Important Photon OS Security Update - PHSA-2023-3.0-0649

2023-09-14 00:00:00

securelist

IT threat evolution Q1 2020. Statistics

2020-05-20 10:00:43

gentoo

Mozilla Firefox: Multiple vulnerabilities

2020-03-12 00:00:00

qualysblog

Managing CISA Known Exploited Vulnerabilities with Qualys VMDR

2022-02-23 05:39:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.526 Medium

EPSS

Percentile

97.6%

JSON

Related for VERACODE:22323