VDB

CVE-2017-5392

CVE-2017-5392 PUBLISHED

Reported by mozilla · Published June 11, 2018

Weak proxy objects have weak references on multiple threads when they should only have them on one, resulting in incorrect memory usage and corruption, which leads to potentially exploitable crashes. Note: This issue only affects Firefox for Android. Other operating systems are not affected. This vulnerability affects Firefox < 51.

Affected Products

VendorProductVersions
MozillaFirefoxunspecified
MozillaFirefoxunspecified

Timeline

  • Jun 11, 2018 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • May 2, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
  • Jan 8, 2023 EPSS Score
  • Mar 11, 2023 EPSS Score

References

  • x_refsource_CONFIRM
  • 1037693 vdb-entryx_refsource_SECTRACK
  • x_refsource_CONFIRM
  • 95763 vdb-entryx_refsource_BID
Open in Interactive Console →
$ Console Community · 100/wk Open console ›