← ExploitWatch
HomeExploited Vulnerabilities

CVE-2019-11707 — Actively Exploited: Firefox and Thunderbird (Mozilla)

Mozilla Firefox and Thunderbird contain a type confusion vulnerability that can occur when manipulating JavaScript objects due to issues in Array.pop, allowing for an exploitable crash.

CVE IDCVE-2019-11707
VendorMozilla
ProductFirefox and Thunderbird
Vulnerability nameMozilla Firefox and Thunderbird Type Confusion Vulnerability
Date added2022-05-23
Remediation due2022-06-13
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionMozilla Firefox and Thunderbird contain a type confusion vulnerability that can occur when manipulating JavaScript objects due to issues in Array.pop, allowing for an exploitable crash.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →