Lucene search
MozillaCVELIST:CVE-2019-9802HistoryApr 26, 2019 - 4:13 p.m.
CVE-2019-9802
2019-04-2616:13:22
mozilla
www.cve.org
3
If a Sandbox content process is compromised, it can initiate an FTP download which will then use a child process to render the downloaded data. The downloaded data can then be passed to the Chrome process with an arbitrary file length supplied by an attacker, bypassing sandbox protections and allow for a potential memory read of adjacent data from the privileged Chrome process, which may include sensitive data. This vulnerability affects Firefox < 66.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "66",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2019-9802
2019-04-26 17:29:03
ubuntucve
ubuntucve
CVE-2019-9802
2019-03-20 00:00:00
cve
cve
CVE-2019-9802
2019-04-26 17:29:03
veracode
veracode
Information Disclosure
2020-09-21 06:37:34
debiancve
debiancve
CVE-2019-9802
2019-04-26 17:29:03
prion
prion
Code injection
2019-04-26 17:29:00
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : Firefox vulnerabilities (USN-3918-1)
2019-03-25 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Firefox regressions (USN-3918-4)
2019-04-17 00:00:00
Ubuntu 14.04 LTS : Firefox vulnerabilities (USN-3918-2)
2019-03-26 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2019-03-25 00:00:00
Firefox regressions
2019-04-16 00:00:00
Firefox vulnerabilities
2019-03-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3918-4)
2019-04-17 00:00:00
Ubuntu: Security Advisory (USN-3918-2)
2019-03-28 00:00:00
Ubuntu: Security Advisory (USN-3918-3)
2019-04-03 00:00:00
archlinux
archlinux
[ASA-201903-11] firefox: multiple issues
2019-03-22 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox 66 — Mozilla
2019-03-19 00:00:00
kaspersky
kaspersky
KLA11439 Multiple vulnerabilities in Mozilla Firefox
2019-03-19 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2019-03-19 00:00:00