CVE-2019-11737

Reference Links

• https://bugzilla.mozilla.org/show_bug.cgi?id=1388015
• https://www.mozilla.org/en-US/security/advisories/mfsa2019-25/
• https://www.mozilla.org/security/advisories/mfsa2019-25/
• https://launchpad.net/bugs/cve/CVE-2019-11737
• https://www.mozilla.org/en-US/security/advisories/mfsa2019-25/#CVE-2019-11747
• https://www.mozilla.org/en-US/security/advisories/mfsa2019-25/#CVE-2019-11737
• https://security-tracker.debian.org/tracker/CVE-2019-11737
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11737
• https://nvd.nist.gov/vuln/detail/CVE-2019-11737
• https://ubuntu.com/security/CVE-2019-11737

Parent vulnerabilities

(Appears in the following advisories)

• MFSA2019-25

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2019-11751
• CVE-2019-11746
• CVE-2019-11744
• CVE-2019-11742
• CVE-2019-11736
• CVE-2019-11753
• CVE-2019-11752
• CVE-2019-9812
• CVE-2019-11741
• CVE-2019-11743
• CVE-2019-11748
• CVE-2019-11749
• CVE-2019-5849
• CVE-2019-11750
• CVE-2019-11737
• CVE-2019-11738
• CVE-2019-11747
• CVE-2019-11734
• CVE-2019-11758
• CVE-2019-11735
• CVE-2019-11740

Frequently Asked Questions

• What is CVE-2019-11737?

  CVE-2019-11737 is a vulnerability that affects Mozilla Firefox versions up to and including version 69.

• What is the severity of CVE-2019-11737?

  CVE-2019-11737 has a low severity rating.

• How does CVE-2019-11737 impact Content Security Policy (CSP) directives?

  If a wildcard (*) is specified for the host in CSP directives, any port or path restriction of the directive will be ignored, leading to CSP directives not being properly applied to content.

• Which software is affected by CVE-2019-11737?

  Mozilla Firefox versions up to and including version 69 are affected by CVE-2019-11737.

• How can I fix the CVE-2019-11737 vulnerability?

  Update your Mozilla Firefox browser to version 69 or higher to fix the CVE-2019-11737 vulnerability.