Cybersecurity Alerts

Mozilla Firefox and Thunderbird Type Confusion Vulnerability

Mozilla Firefox and Thunderbird contain a type confusion vulnerability that can occur when manipulating JavaScript objects due to issues in Array.pop, allowing for an exploitable crash.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-843

References

• https://nvd.nist.gov/vuln/detail/CVE-2019-11707