CVE-2019-9800

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-9800

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-9800.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2019-9800

Downstream

DEBIAN-CVE-2019-9800

DLA-1800-1

DLA-1806-1

DSA-4448-1

DSA-4451-1

RHSA-2019:1265

RHSA-2019:1267

RHSA-2019:1269

RHSA-2019:1308

RHSA-2019:1309

RHSA-2019:1310

SUSE-SU-2019:1388-1

SUSE-SU-2019:1405-1

SUSE-SU-2019:1458-1

UBUNTU-CVE-2019-9800

USN-3991-1

USN-3997-1

openSUSE-SU-2019:1534-1

openSUSE-SU-2019:1664-1

openSUSE-SU-2024:10600-1

openSUSE-SU-2024:10601-1

openSUSE-SU-2024:14572-1

Related

Published

2019-07-23T14:15:16Z

Modified

2025-08-09T20:01:25Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Mozilla developers and community members reported memory safety bugs present in Firefox 66, Firefox ESR 60.6, and Thunderbird 60.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.

References

Affected packages