Mai binciken Firefox yana da rauni CVE-2019-11707, a cewar wasu rahotanni yarda maharin yana amfani da JavaScript don aiwatar da lambar sabani daga nesa. Mozilla ta ce maharan sun riga sun yi amfani da raunin.
Matsalar tana cikin aiwatar da hanyar Array.pop. Cikakkun bayanai har yanzu ba a bayyana ba.
An kayyade raunin a Firefox 67.0.3 da Firefox ESR 60.7.1. Dangane da wannan, zamu iya amincewa da cewa duk nau'ikan Firefox 60.x suna da rauni (wataƙila waɗanda suka gabata ma; idan muna magana akan Array.prototype.pop(), to an aiwatar dashi tun farkon sigar farko. da Firefox).
source: linux.org.ru