What is GHSA-wj24-m2m7-q8x2?

GHSA-wj24-m2m7-q8x2 is a security advisory published by GitHub Security Advisories with High severity. A Denial of Service issue has been discovered in the Gecko component of KaiOS 2.5 10.05 (platform...

Which CVE IDs does GHSA-wj24-m2m7-q8x2 cover?

GHSA-wj24-m2m7-q8x2 covers the following CVE IDs: CVE-2019-7386. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-wj24-m2m7-q8x2?

GHSA-wj24-m2m7-q8x2 has a CVSS v3 base score of 6.5, published by GitHub Security Advisories.

GHSA-wj24-m2m7-q8x2HighCVSS 6.5

A Denial of Service issue has been discovered in the Gecko component of KaiOS 2.5 10.05 (platform...

Vendor

GitHub Security Advisories

Published

May 13, 2022

Last Modified

June 5, 2026

🔗 CVE IDs covered (1)

CVE-2019-7386 →

📋 Description

A Denial of Service issue has been discovered in the Gecko component of KaiOS 2.5 10.05 (platform 48.0.a2) on Nokia 8810 4G devices. When a crafted web page is visited with the internal browser, the Gecko process crashes with a segfault. Successful exploitation could lead to the remote code execution on the device.

🔗 References (10)

https://nvd.nist.gov/vuln/detail/CVE-2019-7386
https://s3curityb3ast.github.io
https://s3curityb3ast.github.io/KSA-Dev-007.md
http://packetstormsecurity.com/files/151651/Nokia-8810-Denial-Of-Service.html
http://seclists.org/fulldisclosure/2019/Feb/35
http://www.breakthesec.com
http://www.breakthesec.com/search/label/0day
https://developer.kaiostech.com/bugzilla-reports/report_141873.html
https://developer.kaiostech.com/bugzilla-reports/report_58204.html
https://github.com/advisories/GHSA-wj24-m2m7-q8x2