CVE-2019-17026
published 2020-03-02CVE-2019-17026: Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild…
PriorityP184high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
KEVITWEXPLOIT
CISA Known Exploited Vulnerabilitydue 2022-05-03
Exploited in the wild
EPSS
46.59%
98.7th percentile
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 68.4.1, Thunderbird < 68.4.1, and Firefox < 72.0.1.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| debian | firefox | < firefox 72.0.1-1 (sid) | firefox 72.0.1-1 (sid) |
| debian | firefox-esr | < firefox 72.0.1-1 (sid) | firefox 72.0.1-1 (sid) |
| debian | thunderbird | < firefox 72.0.1-1 (sid) | firefox 72.0.1-1 (sid) |
| mozilla | firefox | < 68.4.1 | 68.4.1 |
| mozilla | firefox | < 72.0.1 | 72.0.1 |
| mozilla | firefox | — | — |
| mozilla | firefox | >= unspecified < 72.0.1 | 72.0.1 |
| mozilla | firefox_esr | >= unspecified < 68.4.1 | 68.4.1 |
| mozilla | thunderbird | < 68.4.1 | 68.4.1 |
| mozilla | thunderbird | >= 0 < 1:68.4.1-1 | 1:68.4.1-1 |
| mozilla | thunderbird | >= 0 < 1:68.4.1-1 | 1:68.4.1-1 |
| mozilla | thunderbird | >= 0 < 1:68.4.1-1 | 1:68.4.1-1 |
| mozilla | thunderbird | >= 0 < 1:68.4.1-1 | 1:68.4.1-1 |
| mozilla | thunderbird | >= 0 < 1:68.7.0+build1-0ubuntu0.16.04.2 | 1:68.7.0+build1-0ubuntu0.16.04.2 |
| mozilla | thunderbird | >= 0 < 1:68.4.1+build1-0ubuntu0.18.04.1 | 1:68.4.1+build1-0ubuntu0.18.04.1 |
| mozilla | thunderbird | >= unspecified < 68.4.1 | 68.4.1 |
Detection & IOCsextracted from sources · hover to see the quote
- →CVE-2019-17026 is exploited via a type confusion in IonMonkey JIT compiler for setting array elements; detect suspicious Firefox/Thunderbird processes spawning child processes or executing shellcode via ROP chains, particularly on Windows 10 x64 systems. ↗
- →CVE-2019-17026 is a type confusion vulnerability allowing an attacker to write data to or from memory locations that are normally closed off; monitor Firefox content process memory for anomalous array element type coercions in JIT-compiled code. ↗
- →Exploit technique for CVE-2019-17026 involves heap grooming to line up ArrayBuffers in memory and corrupting ArrayBuffer length to achieve OOB read/write primitives; monitor for anomalous heap layout manipulation in Firefox content processes. ↗
- →CVE-2019-17026 exploitation was observed in the wild as a zero-day; treat any unpatched Firefox/Thunderbird instance below the fixed versions as actively targeted. ↗
- ·Hardware Enhanced Exploit Detection for ROP chains (as used in CVE-2019-17026 exploitation) requires Intel CPU 6th generation or newer running Windows 10 RS4 or later; older hardware will not benefit from this detection capability. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.8HIGH
vulncheck8.8HIGH
cisa8.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
vendor_ubuntu8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9m3f-27xq-x4j5: Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion
ghsa_unreviewed·2022-05-24
CVE-2019-17026 [MEDIUM] CWE-843 GHSA-9m3f-27xq-x4j5: Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 68.4.1, Thunderbird < 68.4.1, and Firefox < 72.0.1.
OSV
thunderbird vulnerabilities
osv·2020-04-21·CVSS 8.8
CVE-2019-11757 [HIGH] thunderbird vulnerabilities
thunderbird vulnerabilities
Multiple security issues were discovered in Thunderbird. If a user were
tricked in to opening a specially crafted website in a browsing context,
an attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, bypass security restrictions, bypass
same-origin restrictions, conduct cross-site scripting (XSS) attacks, or
execute arbitrary code. (CVE-2019-11757, CVE-2019-11758, CVE-2019-11759,
CVE-2019-11760, CVE-2019-11761, CVE-2019-11762, CVE-2019-11763,
CVE-2019-11764, CVE-2019-17005, CVE-2019-17008, CVE-2019-17010,
CVE-2019-17011, CVE-2019-17012, CVE-2019-17016, CVE-2019-17017,
CVE-2019-17022, CVE-2019-17024, CVE-2019-17026, CVE-2019-20503,
CVE-2020-6798, CVE-2020-6800, CVE-2020-6805, CVE-2020-6806, CVE-2020-6807,
CVE-2020
OSV
CVE-2019-17026: Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion
osv·2020-03-02·CVSS 8.8
CVE-2019-17026 [HIGH] CVE-2019-17026: Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 68.4.1, Thunderbird < 68.4.1, and Firefox < 72.0.1.
OSV
thunderbird vulnerabilities
osv·2020-01-16·CVSS 8.8
CVE-2019-17005 [HIGH] thunderbird vulnerabilities
thunderbird vulnerabilities
Multiple security issues were discovered in Thunderbird. If a user were
tricked in to opening a specially crafted website in a browsing context,
an attacker could potentially exploit these to cause a denial of service,
conduct cross-site scripting (XSS) attacks, or execute arbitrary code.
(CVE-2019-17005, CVE-2019-17008, CVE-2019-17010, CVE-2019-17011,
CVE-2019-17012, CVE-2019-17016, CVE-2019-17017, CVE-2019-17022,
CVE-2019-17024, CVE-2019-17026)
It was discovered that NSS incorrectly handled certain memory operations.
A remote attacker could potentially exploit this to cause a denial of
service, or execute arbitrary code. (CVE-2019-11745)
VulnCheck
Mozilla Firefox And Thunderbird Type Confusion Vulnerability
vulncheck·2019·CVSS 8.8
CVE-2019-17026 [HIGH] CWE-843 Mozilla Firefox And Thunderbird Type Confusion Vulnerability
Mozilla Firefox And Thunderbird Type Confusion Vulnerability
Mozilla Firefox and Thunderbird contain a type confusion vulnerability due to incorrect alias information in the IonMonkey JIT compiler when setting array elements.
Affected: Mozilla Firefox and Thunderbird
Required Action: Apply updates per vendor instructions.
Exploitation References: https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit; https://blogs.360.cn/post/apt-c-06_0day.html; https://www.tenable.com/blog/daisy-chaining-how-vulnerabilities-can-be-greater-than-the-sum-of-their-parts; https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json
Exploit PoC: https://vulncheck.com/xdb/1c3f5236eacb; https://vulncheck.com/xdb/3ff9de1f6fb7
Remediation Due: 2022-05-
Project0
Project Zero RCA: CVE-2019-11707: IonMonkey Type Confusion in Array.Pop
project_zero·CVSS 8.8
CVE-2019-11707 [HIGH] Project Zero RCA: CVE-2019-11707: IonMonkey Type Confusion in Array.Pop
# CVE-2019-11707: IonMonkey Type Confusion in Array.Pop
*Samuel Groß, Project Zero (Originally posted on [Project Zero blog](https://googleprojectzero.blogspot.com/p/rca.html) 2020-07-27)*
## The Basics
**Disclosure or Patch Date:** 18 June 2019
**Product:** Mozilla Firefox
**Advisory:** https://www.mozilla.org/en-US/security/advisories/mfsa2019-18/
**Affected Versions:** Firefox 67.0.2, likely earlier versions
**First Patched Version:** Firefox 67.0.3 and Firefox ESR 60.7.1
**Issue/Bug Report:**
* Project Zero issue: https://bugs.chromium.org/p/project-zero/issues/detail?id=1820
* Firefox issue: https://bugzilla.mozilla.org/show_bug.cgi?id=1544386
**Patch CL:** https://hg.mozilla.org/releases/mozilla-beta/rev/109cefe117fbdd1764097e06796960082f4fee4e
**Bug-Introducing CL:** Unkno
Project0
Project Zero RCA: CVE-2020-0674: Internet Explorer use-after-free in JScript
project_zero·CVSS 7.5
CVE-2020-0674 [HIGH] Project Zero RCA: CVE-2020-0674: Internet Explorer use-after-free in JScript
# CVE-2020-0674: Internet Explorer use-after-free in JScript
*Maddie Stone, Project Zero (Originally posted on [Project Zero blog](https://googleprojectzero.blogspot.com/p/rca.html) 2020-08-05)*
## The Basics
**Disclosure or Patch Date:** 11 February 2020
**Product:** Microsoft Internet Explorer
**Advisory:** https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0674
**Affected Versions:** For Windows 10 1903/1909, [KB4528760](https://support.microsoft.com/en-us/help/4528760) and previous
**First Patched Version:** For Windows 10 1903/1909, [KB4532693](https://support.microsoft.com/en-us/help/4532693/windows-10-update-kb4532693)
**Issue/Bug Report:** N/A
**Patch CL:** N/A
**Bug-Introducing CL:** N/A
**Reporter(s):** Yi Huang([@C0rk1_H](https://twitter.com/C0
Project0
Project Zero RCA: CVE-2019-1367: Internet Explorer JScript use-after-free
project_zero·CVSS 7.5
CVE-2019-1367 [HIGH] Project Zero RCA: CVE-2019-1367: Internet Explorer JScript use-after-free
# CVE-2019-1367: Internet Explorer JScript use-after-free
*Maddie Stone & Ivan Fratric, Project Zero & Clément Lecigne, Google's Threat Analysis Group (Originally posted on [Project Zero blog](https://googleprojectzero.blogspot.com/p/rca.html) 2020-07-27)*
## The Basics
**Disclosure or Patch Date:** 23 September 2019
**Product:** Microsoft Internet Explorer
**Advisory:** https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1367
**Affected Versions:** For Windows 10 1903, [KB4515384](https://support.microsoft.com/en-us/help/4515384) and previous
**First Patched Version:** For Windows 10 1903, [KB4524147](https://support.microsoft.com/en-us/help/4524147/windows-10-update-kb4524147)
**Issue/Bug Report:** N/A
**Patch CL:** N/A
**Bug-Introducing CL:** N/A
**Repo
Project0
Project Zero RCA: CVE-2019-17026: Firefox Type Confusion in IonMonkey
project_zero·CVSS 8.8
CVE-2019-17026 [HIGH] Project Zero RCA: CVE-2019-17026: Firefox Type Confusion in IonMonkey
# CVE-2019-17026: Firefox Type Confusion in IonMonkey
*Samuel Groß, Project Zero (Originally posted on [Project Zero blog](https://googleprojectzero.blogspot.com/p/rca.html) 2020-08-05)*
## The Basics
**Disclosure or Patch Date:** 8 January 2020
**Product:** Mozilla Firefox
**Advisory:** https://www.mozilla.org/en-US/security/advisories/mfsa2020-03/
**Affected Versions:**
**First Patched Version:** Firefox 72.0.1 and Firefox ESR 68.4.1
**Issue/Bug Report:** https://bugzilla.mozilla.org/show_bug.cgi?id=1607443
**Patch CL:** https://hg.mozilla.org/mozilla-central/rev/d6e40de88f3defdc12ef27e64ca73e120b1f10e2
**Bug-Introducing CL:**
* Adding StoreElementHole: https://hg.mozilla.org/mozilla-central/rev/550a780f73aeb23ea958cab93de141376aa12f3a
* Adding FallibleStoreElement: https://hg.
CISA
Mozilla Firefox And Thunderbird Type Confusion Vulnerability
cisa·2021-11-03·CVSS 8.8
CVE-2019-17026 [HIGH] CWE-843 Mozilla Firefox And Thunderbird Type Confusion Vulnerability
Vulnerability: Mozilla Firefox And Thunderbird Type Confusion Vulnerability
Affected: Mozilla Firefox and Thunderbird
Mozilla Firefox and Thunderbird contain a type confusion vulnerability due to incorrect alias information in the IonMonkey JIT compiler when setting array elements.
Required Action: Apply updates per vendor instructions.
Notes: https://nvd.nist.gov/vuln/detail/CVE-2019-17026
Remediation Due Date: 2022-05-03
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2020-04-21·CVSS 8.8
CVE-2019-11745 [HIGH] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Several security issues were fixed in Thunderbird.
Multiple security issues were discovered in Thunderbird. If a user were
tricked in to opening a specially crafted website in a browsing context,
an attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, bypass security restrictions, bypass
same-origin restrictions, conduct cross-site scripting (XSS) attacks, or
execute arbitrary code. (CVE-2019-11757, CVE-2019-11758, CVE-2019-11759,
CVE-2019-11760, CVE-2019-11761, CVE-2019-11762, CVE-2019-11763,
CVE-2019-11764, CVE-2019-17005, CVE-2019-17008, CVE-2019-17010,
CVE-2019-17011, CVE-2019-17012, CVE-2019-17016, CVE-2019-17017,
CVE-2019-17022, CVE-2019-17024, CVE-2019-17026, CVE-2019-20503,
CVE-2020-6798,
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2020-01-16·CVSS 8.8
CVE-2019-11745 [HIGH] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Several security issues were fixed in Thunderbird.
Multiple security issues were discovered in Thunderbird. If a user were
tricked in to opening a specially crafted website in a browsing context,
an attacker could potentially exploit these to cause a denial of service,
conduct cross-site scripting (XSS) attacks, or execute arbitrary code.
(CVE-2019-17005, CVE-2019-17008, CVE-2019-17010, CVE-2019-17011,
CVE-2019-17012, CVE-2019-17016, CVE-2019-17017, CVE-2019-17022,
CVE-2019-17024, CVE-2019-17026)
It was discovered that NSS incorrectly handled certain memory operations.
A remote attacker could potentially exploit this to cause a denial of
service, or execute arbitrary code. (CVE-2019-11745)
Instructions: After a standard system update you need
Ubuntu
Firefox vulnerabilities
vendor_ubuntu·2020-01-09
CVE-2019-17016 Firefox vulnerabilities
Title: Firefox vulnerabilities
Summary: Firefox could be made to crash or run programs as your login if it
opened a malicious website.
Multiple security issues were discovered in Firefox. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service, obtain sensitive
information, bypass Content Security Policy (CSP) restrictions, conduct
cross-site scripting (XSS) attacks, or execute arbitrary code.
Instructions: After a standard system update you need to restart Firefox to make
all the necessary changes.
Red Hat
Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement
vendor_redhat·2020-01-08·CVSS 8.8
CVE-2019-17026 [HIGH] CWE-843 Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement
Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 68.4.1, Thunderbird < 68.4.1, and Firefox < 72.0.1.
Package: firefox (Red Hat Enterprise Linux 5) - Out of support scope
Package: thunderbird (Red Hat Enterprise Linux 5) - Out of support scope
Debian
CVE-2019-17026: firefox - Incorrect alias information in IonMonkey JIT compiler for setting array elements...
vendor_debian·2019·CVSS 8.8
CVE-2019-17026 [HIGH] CVE-2019-17026: firefox - Incorrect alias information in IonMonkey JIT compiler for setting array elements...
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 68.4.1, Thunderbird < 68.4.1, and Firefox < 72.0.1.
Scope: local
sid: resolved (fixed in 72.0.1-1)
Mozilla
Mozilla Foundation Security Advisory 2020-04: CVE-2019-17026
vendor_mozilla·CVSS 8.8
CVE-2019-17026 [HIGH] Mozilla Foundation Security Advisory 2020-04: CVE-2019-17026
Mozilla Foundation Security Advisory 2020-04
CVE: CVE-2019-17026
Product: Thunderbird
Impact: high
Fixed in: Thunderbird 68.4.1
Mozilla
Mozilla Foundation Security Advisory 2020-03: CVE-2019-17026
vendor_mozilla·CVSS 8.8
CVE-2019-17026 [HIGH] Mozilla Foundation Security Advisory 2020-03: CVE-2019-17026
Mozilla Foundation Security Advisory 2020-03
CVE: CVE-2019-17026
Product: Firefox, Firefox ESR
Impact: critical
Fixed in: Firefox 72.0.1
Firefox ESR 68.4.1
No detection rules found.
Exploit-DB
Mozilla Firefox 67 - Array.pop JIT Type Confusion
exploitdb·2022-02-02·CVSS 8.8
CVE-2019-11707 [HIGH] Mozilla Firefox 67 - Array.pop JIT Type Confusion
Mozilla Firefox 67 - Array.pop JIT Type Confusion
---
# Exploit Title: Mozilla Firefox 67 - Array.pop JIT Type Confusion
# Date: 2021-12-07
# Type: RCE
# Platform: Windows
# Exploit Author: deadlock (Forrest Orr)
# Author Homepage: https://forrest-orr.net
# Vendor Homepage: https://www.mozilla.org/en-US/
# Software Link: https://ftp.mozilla.org/pub/firefox/releases/65.0.1/win64/en-US/
# Version: Firefox 67.0.2 64-bit and earlier
# Tested on: Windows 10 x64
# CVE: CVE-2019-11707
# Bypasses: DEP, High Entropy ASLR, CFG
# Full Hydseven exploit chain with sandbox escape (CVE-2019-11708): https://github.com/forrest-orr/Exploits/tree/main/Chains/Hydseven
/*
_______ ___ ___ _______ _______ _______ _____ _______ _____ _____ _______ _______ _______
| _ | Y | _ |______| | _ | _ | _ |______| _ |
Exploit-DB
Firefox 72 IonMonkey - JIT Type Confusion
exploitdb·2021-05-13·CVSS 8.8
CVE-2019-17026 [HIGH] Firefox 72 IonMonkey - JIT Type Confusion
Firefox 72 IonMonkey - JIT Type Confusion
---
# Exploit Title: Firefox 72 IonMonkey - JIT Type Confusion
# Date: 2021-05-10
# Exploit Author: deadlock (Forrest Orr)
# Vendor Homepage: https://www.mozilla.org/en-US/
# Software Link: https://www.mozilla.org/en-US/firefox/new/
# Versions: Firefox )| | /| \_\ \| |__\ ___/ / \ | | / __ \_| | \/
/_______ / \____/ |____/ |___ /|____/ \___ > /_______ / |__| (____ /|__|
\/ \/ \/ \/ \/
Windows 8.1 IE/Firefox RCE -> Sandbox Escape -> SYSTEM EoP Exploit Chain
| Remote PAC |
|____________|
^
| HTTPS
_______________ RPC/ALPC _______________ RPC/ALPC _______________
| firefox.exe | ----------> | svchost.exe | -----------> | spoolsv.exe |
|_____________| |_____________| | Egg hunter | ------------> | WPAD sandbox escape |
|_____________| | shellcode |
Bugzilla
CVE-2019-17026 Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement
bugzilla·2020-01-09·CVSS 8.8
CVE-2019-17026 [HIGH] CVE-2019-17026 Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement
CVE-2019-17026 Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw.
External Reference:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-03/#CVE-2019-17026
Discussion:
Acknowledgments:
Name: the Mozilla project
Upstream: Qihoo 360 ATA
---
*** Bug 1788980 has been marked as a duplicate of this bug. ***
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6
Via RHSA-2020:0086 https://access.redhat.com/errata/RHSA-2020:0086
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2020:0085 htt
Bugzilla
In-the-wild 0-day reported by Qihoo 360
bugzilla·2020-01-07
[CRITICAL] In-the-wild 0-day reported by Qihoo 360
In-the-wild 0-day reported by Qihoo 360
Created attachment 9119085
RAW-EXPLOIT-POC.html
We received an email to security@:
```
This is Ella from Qihoo 360 ATA team. We just caught a wild used 0day, and it's already been exploited in active attacks in the wild. It take advantage of PAC script engine and it is a remote cod execution issue.
Attached is the POC for your reference.
```
Decrypted and attached, no analysis yet.
Discussion:
Created attachment 9119088
JS shell testcase
Crashes a Nightly debug JS shell.
```
-> 0x1a57593fe652: cmpq %r11, (%r12)
0x1a57593fe656: jne 0x1a57593fe665
0x1a57593fe65c: cmovneq %rax, %r12
0x1a57593fe660: jmp 0x1a57593fe67d
Target 0: (js) stopped.
(lldb) p/x $r12
(unsigned long) $0 = 0x1a1be5e5e5e5e5e5
```
---
With --no-threads I get "LoadSlot instru
Qualys
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR | Qualys
blogs_qualys·2022-02-23
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR | Qualys
#### Table of Contents
- Situation
- Directive Scope
- CISA Catalog of Known Exploited Vulnerabilities
- Detect CISA Vulnerabilities Using Qualys VMDR
- CISA Exploited RTI
- Detailed Operational Dashboard
- Remediation
- Federal Enterprises and Agencies Can Act Now
- Summary
- Getting Started
CISA released a directive in November 2021, recommending urgent and prioritized remediation of actively exploited vulnerabilities. Both government agencies and corporations should heed this advice. This blog outlines how Qualys Vulnerability Management, Detection & Response can be used by any organization to respond to this directive efficiently and effectively.
## Situation
Last November 2021, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a Binding Operational Directiv
Tenable
Daisy Chaining: How Vulnerabilities Can Be Greater Than the Sum of Their Parts
blogs_tenable·2021-01-21
Daisy Chaining: How Vulnerabilities Can Be Greater Than the Sum of Their Parts
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Tenable
How to Use VPR to Manage Threats Prior to NVD Publication
blogs_tenable·2020-05-22
How to Use VPR to Manage Threats Prior to NVD Publication
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Checkpoint
6th April – Threat Intelligence Bulletin
blogs_checkpoint·2020-04-06·CVSS 8.8
CVE-2019-17026 [HIGH] 6th April – Threat Intelligence Bulletin
Latest Publications
CPR Podcast Channel
AI Research
Web 3.0 Security
Intelligence Reports
ThreatCloud AI
Threat Intelligence & Research
Zero Day Protection
Sandblast File Analysis
About Us
SUBSCRIBE
2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
## 6th April – Threat Intelligence Bulletin
For the latest discoveries in cyber research for the week of 6th April 2020, please download our Threat Intelligence Bulletin .
Top Attacks and Breaches
A new campaign of the Zeus Sphinx banker is targeting clients of US, Canadian and Australian banks using COVID-19 themed emails. Emails titled “COVID 19 relief” contain password-protected Word documents with malicious macros.
Check Point SandBlast, Anti-Bot and Anti-virus provide protection against this threat (Trojan-B
Tenable
How COVID-19 Response Is Expanding the Cyberattack Surface
blogs_tenable·2020-03-30
How COVID-19 Response Is Expanding the Cyberattack Surface
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Talos
Threat Source newsletter (Jan. 9, 2019)
blogs_talos·2020-01-09
Threat Source newsletter (Jan. 9, 2019)
## Threat Source newsletter (Jan. 9, 2019)
Newsletter compiled by Jon Munshaw.
Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.
We’re back after a long break for the holidays. And 2020 is already off to a fast start as tensions continue to rise in the Middle East.
We’ve gotten a lot of questions about whether customers and users should be concerned about cyber attacks from Iran after they’ve exchanged missile strikes with the U.S. But the reality of the situation is, if you haven’t already been preparing from attacks for state-sponsored actors, it’s already too late. We run down our thoughts on the situation here .
We also have our first Beers with Talos episode of the new year out, where the guys run down the
Talos
Threat Source newsletter (Jan. 9, 2019)
blogs_talos·2020-01-09
Threat Source newsletter (Jan. 9, 2019)
Newsletter compiled by Jon Munshaw.
Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.
We’re back after a long break for the holidays. And 2020 is already off to a fast start as tensions continue to rise in the Middle East.
We’ve gotten a lot of questions about whether customers and users should be concerned about cyber attacks from Iran after they’ve exchanged missile strikes with the U.S. But the reality of the situation is, if you haven’t already been preparing from attacks for state-sponsored actors, it’s already too late. We run down our thoughts on the situation here.
We also have our first Beers with Talos episode of the new year out, where the guys run down the top threats of 2019 and talk about what less
Tenable
CVE-2019-17026: Zero-Day Vulnerability in Mozilla Firefox Exploited in Targeted Attacks
blogs_tenable·2020-01-08·CVSS 8.8
[HIGH] CVE-2019-17026: Zero-Day Vulnerability in Mozilla Firefox Exploited in Targeted Attacks
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Crowdstrike
Introducing Falcon Hardware Enhanced Exploit Detection
blogs_crowdstrike·CVSS 7.5
CVE-2026-20929 [HIGH] Introducing Falcon Hardware Enhanced Exploit Detection
STARDUST CHOLLIMA Likely Compromises Axios npm Package Apr 01, 2026
Falcon for IT Supports Windows Secure Boot Certificate Lifecycle Management Apr 01, 2026
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse Mar 31, 2026
How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem Mar 25, 2026
STARDUST CHOLLIMA Likely Compromises Axios npm Package Apr 01, 2026
Falcon for IT Supports Windows Secure Boot Certificate Lifecycle Management Apr 01, 2026
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse Mar 31, 2026
How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem Mar 25, 2026
Video Highlights the 4 Key Steps to Successful Incident Response Dec 02, 2019
Helping Non-Security Stakeholders Understand ATT&CK in 10 Minutes or Less [VI
http://packetstormsecurity.com/files/162568/Firefox-72-IonMonkey-JIT-Type-Confusion.htmlhttps://bugzilla.mozilla.org/show_bug.cgi?id=1607443https://security.gentoo.org/glsa/202003-02https://usn.ubuntu.com/4335-1/https://www.mozilla.org/security/advisories/mfsa2020-03/https://www.mozilla.org/security/advisories/mfsa2020-04/http://packetstormsecurity.com/files/162568/Firefox-72-IonMonkey-JIT-Type-Confusion.htmlhttps://bugzilla.mozilla.org/show_bug.cgi?id=1607443https://security.gentoo.org/glsa/202003-02https://usn.ubuntu.com/4335-1/https://www.mozilla.org/security/advisories/mfsa2020-03/https://www.mozilla.org/security/advisories/mfsa2020-04/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-17026
2020-03-02
Published
2021-11-03
Added to CISA KEV
Exploited in the wild