Vulnerability CVE-2019-9804

Vulnerability Name:

CVE-2019-9804 (CCN-158418)

Assigned:

2019-03-19

Published:

2019-03-19

Updated:

2019-04-30

Summary:

In Firefox Developer Tools it is possible that pasting the result of the 'Copy as cURL' command into a command shell on macOS will cause the execution of unintended additional bash script commands if the URL was maliciously crafted. This is the result of an issue with the native version of Bash on macOS.
Note: This issue only affects macOS. Other operating systems are unaffected. This vulnerability affects Firefox < 66.

CVSS v3 Severity:

9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-78

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2019-9804

Source: MISC
Type: Issue Tracking
https://bugzilla.mozilla.org/show_bug.cgi?id=1518026

Source: XF
Type: UNKNOWN
firefox-cve20199804-code-exec(158418)

Source: CCN
Type: Mozilla Foundation Security Advisory 2019-07
Security vulnerabilities fixed in Firefox 66

Source: MISC
Type: Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2019-07/

Vulnerable Configuration:

Configuration 1:

cpe:/a:mozilla:firefox:*:*:*:*:*:*:*:* (Version < 66.0)

AND

cpe:/o:apple:mac_os_x:-:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:mozilla:firefox:65.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:111899	P	MozillaFirefox-92.0-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:105476	P	MozillaFirefox-92.0-1.2 on GA media (Moderate)	2021-10-01
oval:com.ubuntu.disco:def:201998040000000	V	CVE-2019-9804 on Ubuntu 19.04 (disco) - negligible.	2019-04-26
oval:com.ubuntu.bionic:def:20199804000	V	CVE-2019-9804 on Ubuntu 18.04 LTS (bionic) - negligible.	2019-04-26
oval:com.ubuntu.cosmic:def:201998040000000	V	CVE-2019-9804 on Ubuntu 18.10 (cosmic) - negligible.	2019-04-26
oval:com.ubuntu.cosmic:def:20199804000	V	CVE-2019-9804 on Ubuntu 18.10 (cosmic) - negligible.	2019-04-26
oval:com.ubuntu.bionic:def:201998040000000	V	CVE-2019-9804 on Ubuntu 18.04 LTS (bionic) - negligible.	2019-04-26
oval:com.ubuntu.xenial:def:201998040000000	V	CVE-2019-9804 on Ubuntu 16.04 LTS (xenial) - negligible.	2019-04-26
oval:com.ubuntu.xenial:def:20199804000	V	CVE-2019-9804 on Ubuntu 16.04 LTS (xenial) - negligible.	2019-04-26
oval:com.ubuntu.trusty:def:20199804000	V	CVE-2019-9804 on Ubuntu 14.04 LTS (trusty) - negligible.	2019-03-20

BACK