CVE-2019-9802 — Out-of-bounds Read in Mozilla Firefox

CWE-125 — Out-of-bounds Read CWE-200 — Sensitive Information Exposure12 documents5 sources

Severity

7.5HIGHNVD

OSV9.8

EPSS

0.2%

top 56.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Debian Firefox

Timeline

PublishedApr 26

Latest updateMay 24

Description

If a Sandbox content process is compromised, it can initiate an FTP download which will then use a child process to render the downloaded data. The downloaded data can then be passed to the Chrome process with an arbitrary file length supplied by an attacker, bypassing sandbox protections and allow for a potential memory read of adjacent data from the privileged Chrome process, which may include sensitive data. This vulnerability affects Firefox < 66.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/firefox< firefox 66.0-1 (sid)

▶CVEListV5mozilla/firefoxunspecified — 66

▶NVDmozilla/firefox< 66.0

▶Ubuntumozilla/firefox< 66.0.2+build1-0ubuntu0.14.04.1+8

🔴Vulnerability Details

GHSA

GHSA-r3xx-53c7-m93v: If a Sandbox content process is compromised, it can initiate an FTP download which will then use a child process to render the downloaded data↗2022-05-24

▶

OSV

firefox regressions↗2019-04-16

▶

OSV

firefox regression↗2019-03-28

▶

OSV

firefox vulnerabilities↗2019-03-25

▶

OSV

firefox vulnerabilities↗2019-03-21

▶

📋Vendor Advisories

Ubuntu

Firefox regressions↗2019-04-16

▶

Ubuntu

Firefox regression↗2019-03-28

▶

Ubuntu

Firefox vulnerabilities↗2019-03-25

▶

Ubuntu

Firefox vulnerabilities↗2019-03-21

▶

Debian

CVE-2019-9802: firefox - If a Sandbox content process is compromised, it can initiate an FTP download whi...↗2019

▶