CVE-2019-17024

EPSS 3.28% · P87 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-17024

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Mozilla developers reported memory safety bugs present in Firefox 71 and Firefox ESR 68.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 68.4 and Firefox < 72.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Mozilla Firefox和Mozilla Firefox ESR 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Mozilla Firefox和Mozilla Firefox ESR都是美国Mozilla基金会的产品。Mozilla Firefox是一款开源Web浏览器。Mozilla Firefox ESR是Firefox(Web浏览器)的一个延长支持版本。 Mozilla Firefox 71及之前版本和Mozilla Firefox ESR 68.3及之前版本中存在安全漏洞。攻击者可利用该漏洞损坏内存并可能执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Mozilla	Firefox ESR	before 68.4	-
Mozilla	Firefox	before 72	-

II. Public POCs for CVE-2019-17024

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2019-17024

请登录查看更多情报信息。

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1507180%2C1595470%2C1598605%2C1601826x_refsource_MISC
http://packetstormsecurity.com/files/155912/Slackware-Security-Advisory-mozilla-thunderbird-Updates.htmlx_refsource_MISC
https://www.mozilla.org/security/advisories/mfsa2020-02/x_refsource_CONFIRM
https://www.mozilla.org/security/advisories/mfsa2020-01/x_refsource_CONFIRM
https://www.debian.org/security/2020/dsa-4603vendor-advisoryx_refsource_DEBIAN
https://usn.ubuntu.com/4234-1/vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/4335-1/vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/4241-1/vendor-advisoryx_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2020:0085vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2020:0123vendor-advisoryx_refsource_REDHAT
https://security.gentoo.org/glsa/202003-02vendor-advisoryx_refsource_GENTOO
https://access.redhat.com/errata/RHSA-2020:0120vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2020:0295vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2020:0292vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2020:0127vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2020:0086vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2020:0111vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00029.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00043.htmlvendor-advisoryx_refsource_SUSE
https://seclists.org/bugtraq/2020/Jan/12mailing-listx_refsource_BUGTRAQ
https://seclists.org/bugtraq/2020/Jan/26mailing-listx_refsource_BUGTRAQ
https://seclists.org/bugtraq/2020/Jan/18mailing-listx_refsource_BUGTRAQ
https://lists.debian.org/debian-lts-announce/2020/01/msg00016.htmlmailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2020/01/msg00005.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2019-17024

Same Patch Batch · Mozilla · 2020-01-08 · 34 CVEs total

CVE-2019-11762		Mozilla Firefox、Mozilla Firefox ESR和Thunderbird 访问控制错误漏洞
CVE-2019-17009		多款Mozilla产品安全漏洞
CVE-2019-17008		多款Mozilla产品资源管理错误漏洞
CVE-2019-17005		多款Mozilla产品缓冲区错误漏洞
CVE-2019-17002		Mozilla Firefox 输入验证错误漏洞
CVE-2019-17000		Mozilla Firefox 跨站脚本漏洞
CVE-2019-11765		Mozilla Firefox 安全漏洞
CVE-2019-11764		Mozilla Thunderbird 缓冲区错误漏洞
CVE-2019-11763		Mozilla Firefox、Mozilla Firefox ESR和Thunderbird 跨站脚本漏洞
CVE-2019-17010		Mozilla Thunderbird 竞争条件问题漏洞
CVE-2019-11761		Mozilla Firefox、Mozilla Firefox ESR和Thunderbird 竞争条件问题漏洞
CVE-2019-11760		Mozilla Firefox、Mozilla Firefox ESR和Thunderbird 缓冲区错误漏洞
CVE-2019-11759		Mozilla Firefox、Firefox ESR和Thunderbird 缓冲区错误漏洞
CVE-2019-11758		多款Mozilla产品缓冲区错误漏洞
CVE-2019-11757		Mozilla Firefox、Mozilla Firefox ESR和Thunderbird 资源管理错误漏洞
CVE-2019-11756		Amazon Linux AMI 资源管理错误漏洞
CVE-2019-11745		Mozilla Firefox 缓冲区错误漏洞
CVE-2019-17001		Mozilla Firefox 跨站脚本漏洞
CVE-2019-17011		Mozilla Thunderbird 竞争条件问题漏洞
CVE-2019-17012		多款Mozilla产品缓冲区错误漏洞

Showing top 20 of 34 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Firefox ESR

Same vendor: Mozilla

V. Comments for CVE-2019-17024

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2019-17024

I. Basic Information for CVE-2019-17024

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2019-17024

III. Intelligence Information for CVE-2019-17024

Same Patch Batch · Mozilla · 2020-01-08 · 34 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2019-17024

Leave a comment