CVE-2018-5150

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2018-5150

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-5150.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-5150

Downstream

DEBIAN-CVE-2018-5150

DLA-1376-1

DLA-1382-1

DSA-4199-1

DSA-4209-1

RHSA-2018:1414

RHSA-2018:1415

RHSA-2018:1725

RHSA-2018:1726

SUSE-SU-2018:1319-1

SUSE-SU-2018:1334-1

SUSE-SU-2018:1334-2

SUSE-SU-2018:2298-1

SUSE-SU-2019:2872-1

UBUNTU-CVE-2018-5150

USN-3645-1

USN-3660-1

USN-3688-1

openSUSE-SU-2024:10600-1

openSUSE-SU-2024:10601-1

openSUSE-SU-2024:14572-1

Related

Withdrawn

2026-01-27T04:14:23.866420Z

Published

2018-06-11T21:29:14Z

Modified

2026-01-27T04:14:23.866420Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Memory safety bugs were reported in Firefox 59, Firefox ESR 52.7, and Thunderbird 52.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 52.8, Thunderbird ESR < 52.8, Firefox < 60, and Firefox ESR < 52.8.

References

Affected packages