← ExploitWatch
HomeExploited Vulnerabilities

CVE-2019-17026 — Actively Exploited: Firefox and Thunderbird (Mozilla)

Mozilla Firefox and Thunderbird contain a type confusion vulnerability due to incorrect alias information in the IonMonkey JIT compiler when setting array elements.

CVE IDCVE-2019-17026
VendorMozilla
ProductFirefox and Thunderbird
Vulnerability nameMozilla Firefox And Thunderbird Type Confusion Vulnerability
Date added2021-11-03
Remediation due2022-05-03
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionMozilla Firefox and Thunderbird contain a type confusion vulnerability due to incorrect alias information in the IonMonkey JIT compiler when setting array elements.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →