CVE-2019-7399
First published: Sun Feb 17 2019(Updated: )
Amazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of Use" and Privacy pages.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Amazon Fire OS | <5.3.6.4 | |
| <5.3.6.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Amazon Fire OS vulnerability?
The vulnerability ID for this Amazon Fire OS vulnerability is CVE-2019-7399.
What is the severity of CVE-2019-7399?
The severity of CVE-2019-7399 is high with a CVSS score of 7.4.
What is the impact of CVE-2019-7399?
CVE-2019-7399 allows a man-in-the-middle attack against HTTP requests for "Terms of Use" and Privacy pages in Amazon Fire OS before 5.3.6.4.
How can I protect myself from the CVE-2019-7399 vulnerability?
To protect yourself from CVE-2019-7399, ensure that you update Amazon Fire OS to version 5.3.6.4 or later.
Where can I find more information about CVE-2019-7399?
You can find more information about CVE-2019-7399 at the following references: [SecurityFocus](http://www.securityfocus.com/bid/107025) and [Nightwatch Cybersecurity](https://wwws.nightwatchcybersecurity.com/2019/02/07/content-injection-in-amazon-kindles-fireos-cve-2019-7399/).
- collector/nvd-index
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/description
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/amazon
- canonical/amazon fire os