Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2019-9810HistoryApr 26, 2019 - 5:29 p.m.
CVE-2019-9810
2019-04-2617:29:00
Debian Security Bug Tracker
security-tracker.debian.org
12
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.957 High
EPSS
Percentile
99.4%
Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buffer overflow. This vulnerability affects Firefox < 66.0.1, Firefox ESR < 60.6.1, and Thunderbird < 60.6.1.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | firefox | < 66.0.1-1 | firefox_66.0.1-1_all.deb |
| Debian | 12 | all | firefox-esr | < 60.6.1esr-1 | firefox-esr_60.6.1esr-1_all.deb |
| Debian | 11 | all | firefox-esr | < 60.6.1esr-1 | firefox-esr_60.6.1esr-1_all.deb |
| Debian | 10 | all | firefox-esr | < 60.6.1esr-1 | firefox-esr_60.6.1esr-1_all.deb |
| Debian | 999 | all | firefox-esr | < 60.6.1esr-1 | firefox-esr_60.6.1esr-1_all.deb |
| Debian | 13 | all | firefox-esr | < 60.6.1esr-1 | firefox-esr_60.6.1esr-1_all.deb |
Related
prion
prion
Buffer overflow
2019-04-26 17:29:00
ubuntucve
ubuntucve
CVE-2019-9810
2019-03-25 00:00:00
packetstorm
packetstorm
Firefox Array.prototype.slice Buffer Overflow
2019-03-27 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox IonMonkey JIT Compiler Buffer Overflow (CVE-2019-9810)
2019-04-03 00:00:00
veracode
veracode
Buffer Overflow
2019-05-16 03:58:52
zdi
zdi
alpinelinux
alpinelinux
CVE-2019-9810
2019-04-26 17:29:00
githubexploit
githubexploit
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Firefox
2019-05-05 17:19:02
Exploit for Improper Input Validation in Mozilla Firefox Esr
2019-09-29 07:08:52
Exploit for Type Confusion in Mozilla Thunderbird
2020-04-13 15:11:46
attackerkb
attackerkb
CVE-2019-9810
2019-04-26 00:00:00
zdt
zdt
Firefox 66.0.1 - Array.prototype.slice Buffer Overflow Exploit
2019-03-27 00:00:00
Mozilla FireFox (Windows 10 x64) - Full Chain Client Side Attack Exploit
2019-12-09 00:00:00
redhatcve
redhatcve
CVE-2019-9810
2020-04-03 14:01:31
cve
cve
CVE-2019-9810
2019-04-26 17:29:00
nessus
nessus
Mozilla Firefox < 66.0.1
2019-03-22 00:00:00
Mozilla Thunderbird < 60.6.1
2019-03-29 00:00:00
openSUSE Security Update : MozillaThunderbird (openSUSE-2019-1152)
2019-04-05 00:00:00
osv
osv
firefox-esr - security update
2019-03-25 00:00:00
firefox-esr - security update
2019-03-24 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for firefox (EulerOS-SA-2019-1570)
2020-01-23 00:00:00
Mageia: Security Advisory (MGASA-2019-0131)
2022-01-28 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Thunderbird 60.6.1 — Mozilla
2019-03-25 00:00:00
Security vulnerabilities fixed in Firefox 60.6.1 — Mozilla
2019-03-22 00:00:00
Security vulnerabilities fixed in Firefox 66.0.1 — Mozilla
2019-03-22 00:00:00
oraclelinux
oraclelinux
firefox security update
2019-03-27 00:00:00
firefox security update
2019-03-28 00:00:00
thunderbird security update
2019-03-28 00:00:00
kaspersky
kaspersky
KLA11450 Multiple vulnerabilities in Mozilla Firefox
2019-03-22 00:00:00
KLA11453 Multiple vulnerabilities in Mozilla Thunderbird
2019-03-25 00:00:00
KLA11451 Multiple vulnerabilities in Mozilla Firefox ESR
2019-03-22 00:00:00
redhat
redhat
(RHSA-2019:0671) Critical: firefox security update
2019-03-27 07:14:51
(RHSA-2019:0672) Critical: firefox security update
2019-03-27 08:48:21
(RHSA-2019:0966) Critical: firefox security update
2019-05-07 03:37:57
exploitpack
exploitpack
Mozilla FireFox (Windows 10 x64) - Full Chain Client Side Attack
2019-12-07 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 60.6.1-alt1
2019-03-23 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 60.6.1-alt1
2019-03-26 00:00:00
suse
suse
Security update for MozillaThunderbird (important)
2019-04-04 00:00:00
Security update for MozillaFirefox (important)
2019-03-27 00:00:00
Security update for MozillaFirefox (important)
2019-03-29 00:00:00
debian
debian
[SECURITY] [DLA 1727-1] firefox-esr security update
2019-03-25 13:12:34
[SECURITY] [DSA 4417-1] firefox-esr security update
2019-03-24 20:16:07
centos
centos
firefox security update
2019-04-01 19:07:32
firefox security update
2019-04-01 19:05:36
thunderbird security update
2019-04-01 19:06:22
slackware
slackware
[slackware-security] mozilla-firefox
2019-03-22 21:29:01
archlinux
archlinux
[ASA-201903-14] firefox: arbitrary code execution
2019-03-23 00:00:00
[ASA-201904-4] thunderbird: arbitrary code execution
2019-04-06 00:00:00
ibm
ibm
Security Bulletin: Multiple Mozilla Firefox vulnerabilities in IBM SONAS
2019-07-08 08:55:01
mageia
mageia
Updated firefox packages fix security vulnerability
2019-04-05 21:12:59
Updated thunderbird packages fix security vulnerability
2019-04-05 21:12:59
ubuntu
ubuntu
Firefox vulnerabilities
2019-03-25 00:00:00
Thunderbird vulnerabilities
2019-03-28 00:00:00
exploitdb
exploitdb
Mozilla FireFox (Windows 10 x64) - Full Chain Client Side Attack
2019-12-07 00:00:00
thn
thn
amazon
amazon
Critical: thunderbird
2019-04-25 16:37:00
gentoo
gentoo
Mozilla Thunderbird and Firefox: Multiple vulnerabilities
2019-04-02 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.957 High
EPSS
Percentile
99.4%
Related for DEBIANCVE:CVE-2019-9810