CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-7386

A Denial of Service issue has been discovered in the Gecko component of KaiOS 2.5 10.05 (platform 48.0.a2) on Nokia 8810 4G devices. When a crafted web page is visited with the internal browser, the Gecko process crashes with a segfault. Successful exploitation could lead to the remote code execution on the device.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.027

EPSS Ranking 85.2%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 7.1

References

http://packetstormsecurity.com/files/151651/Nokia-8810-Denial-Of-Service.html
http://seclists.org/fulldisclosure/2019/Feb/35
http://www.breakthesec.com
http://www.breakthesec.com/search/label/0day
https://s3curityb3ast.github.io
https://s3curityb3ast.github.io/KSA-Dev-007.md
http://packetstormsecurity.com/files/151651/Nokia-8810-Denial-Of-Service.html
http://seclists.org/fulldisclosure/2019/Feb/35
http://www.breakthesec.com
http://www.breakthesec.com/search/label/0day
https://s3curityb3ast.github.io
https://s3curityb3ast.github.io/KSA-Dev-007.md

Products affected by CVE-2019-7386

Nokia » 8810 4g » Version: N/A

cpe:2.3:h:nokia:8810_4g:-
Kaiostech » Kaios » Version: 2.5

cpe:2.3:o:kaiostech:kaios:2.5
Nokia » 8810 4g Firmware » Version: 10.05

cpe:2.3:o:nokia:8810_4g_firmware:10.05

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-7386

Products

Pricing

Contact Us