Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. This vulnerability affects Firefox ESR < 68.4 and Firefox < 72.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mozilla
Published: 2020-01-08T21:27:36
Updated: 2020-04-29T02:06:58
Reserved: 2019-09-30T00:00:00
Link: CVE-2019-17017
JSON object: View
NVD Information
Status : Modified
Published: 2020-01-08T22:15:12.357
Modified: 2020-01-13T20:15:12.187
Link: CVE-2019-17017
JSON object: View
Redhat Information
No data.
CWE