Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2019-9813Type Confusion in Mozilla Firefox

CWE-843Type Confusion10 documents8 sources
Severity
8.8HIGHNVD
OSV5.9
EPSS
46.7%
top 2.33%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
5
Mozilla FirefoxMozilla Firefox ESRMozilla Thunderbird+2 more
Timeline
PublishedApr 26
Latest updateMay 24

Description

Incorrect handling of __proto__ mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write. This vulnerability affects Firefox < 66.0.1, Firefox ESR < 60.6.1, and Thunderbird < 60.6.1.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages8 packages

debiandebian/firefox< firefox 66.0.1-1 (sid)
CVEListV5mozilla/firefoxunspecified66.0.1
NVDmozilla/firefox< 60.6.1+1
debiandebian/firefox-esr< firefox 66.0.1-1 (sid)
CVEListV5mozilla/firefox_esrunspecified60.6.1

🔴Vulnerability Details

3
GHSA
GHSA-qxrm-24v6-5c8c: Incorrect handling of __proto__ mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write2022-05-24
OSV
CVE-2019-9813: Incorrect handling of __proto__ mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write2019-04-26
OSV
thunderbird vulnerabilities2019-03-28

💥Exploits & PoCs

1
Exploit-DB
SpiderMonkey - IonMonkey Compiled Code Fails to Update Inferred Property Types (Type Confusion)2019-04-03

📋Vendor Advisories

4
Ubuntu
Thunderbird vulnerabilities2019-03-28
Ubuntu
Firefox vulnerabilities2019-03-25
Red Hat
Mozilla: Ionmonkey type confusion with __proto__ mutations2019-03-22
Debian
CVE-2019-9813: firefox - Incorrect handling of __proto__ mutations may lead to type confusion in IonMonke...2019

💬Community

1
Bugzilla
CVE-2019-9813 Mozilla: Ionmonkey type confusion with __proto__ mutations2019-03-24