Lucene search

K
attackerkbAttackerKBAKB:4116A9E9-A49D-4869-B45D-E8E934E4D0EE
HistoryMar 02, 2020 - 12:00 a.m.

CVE-2019-17026

2020-03-0200:00:00
attackerkb.com
23

0.534 Medium

EPSS

Percentile

97.6%

Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 68.4.1, Thunderbird < 68.4.1, and Firefox < 72.0.1.

Recent assessments:

gwillcox-r7 at November 22, 2020 2:13am UTC reported:

Reported as exploited in the wild as part of Google’s 2020 0day vulnerability spreadsheet they made available at <https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=1869060786&gt;. Original Tweet announcing this spreadsheet with the 2020 findings can be found at <https://twitter.com/maddiestone/status/1329837665378725888&gt;

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0