A vulnerability was found in Mozilla Firefox up to 65.x (Web Browser). It has been rated as critical. Affected by this issue is the function createImageBitmap of the component Image Handler. The manipulation with an unknown input leads to a origin validation vulnerability. Using CWE to declare the problem leads to CWE-346. The product does not properly verify that the source of data or communication is valid. Impacted is confidentiality, integrity, and availability. CVE summarizes:

Cross-origin images can be read in violation of the same-origin policy by exporting an image after using createImageBitmap to read the image and then rendering the resulting bitmap image within a canvas element. This vulnerability affects Firefox < 66.

The bug was discovered 03/19/2019. The weakness was disclosed 04/26/2019 (Website). The advisory is available at seclists.org. This vulnerability is handled as CVE-2019-9797 since 03/14/2019. The attack may be launched remotely. No form of authentication is required for exploitation. Successful exploitation requires user interaction by the victim. Technical details are known, but there is no available exploit.

The vulnerability was handled as a non-public zero-day exploit for at least 38 days. During that time the estimated underground price was around $5k-$25k. The commercial vulnerability scanner Qualys is able to test this issue with plugin 197402 (Ubuntu Security Notification for Firefox Vulnerabilities (USN-3918-1)).

Upgrading to version 66.0 eliminates this vulnerability.

The entries 134135, 134154, 134164 and 134166 are pretty similar.

Productinfo

Type

• Web Browser

Vendor

• Mozilla

Name

• Firefox

Version

• 65.x

License

• open-source

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion