Gecko Denial of Service Vulnerability on KaiOS 2.5

Gecko Denial of Service Vulnerability on KaiOS 2.5

CVE-2019-7386 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

A Denial of Service issue has been discovered in the Gecko component of KaiOS 2.5 10.05 (platform 48.0.a2) on Nokia 8810 4G devices. When a crafted web page is visited with the internal browser, the Gecko process crashes with a segfault. Successful exploitation could lead to the remote code execution on the device.

Learn more about our Cis Benchmark Audit For Apple Ios.