Lucene search

CVE-2018-5155

🗓️ 11 Jun 2018 21:15:29Reported by mozillaType

A use-after-free vulnerability during SVG animations with text paths can cause exploitable crash

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 134
Prion	Design/Logic Flaw	11 Jun 201821:29	–	prion
NVD	CVE-2018-5155	11 Jun 201821:29	–	nvd
Cvelist	CVE-2018-5155	11 Jun 201821:00	–	cvelist
Veracode	Use After Free	16 May 201902:25	–	veracode
UbuntuCve	CVE-2018-5155	10 May 201800:00	–	ubuntucve
RedhatCVE	CVE-2018-5155	2 Apr 202008:29	–	redhatcve
Debian CVE	CVE-2018-5155	11 Jun 201821:29	–	debiancve
RedHat Linux	(RHSA-2018:1414) Critical: firefox security update	14 May 201813:20	–	redhat
RedHat Linux	(RHSA-2018:1415) Critical: firefox security update	14 May 201813:22	–	redhat
RedHat Linux	(RHSA-2018:1726) Important: thunderbird security update	24 May 201818:29	–	redhat

Nvd

Vulners

Node

debian debian_linuxMatch7.0

debian debian_linuxMatch8.0

debian debian_linuxMatch9.0

Node

redhat enterprise_linux_desktopMatch6.0

redhat enterprise_linux_desktopMatch7.0

redhat enterprise_linux_serverMatch6.0

redhat enterprise_linux_serverMatch7.0

redhat enterprise_linux_server_ausMatch7.6

redhat enterprise_linux_server_eusMatch7.5

redhat enterprise_linux_server_eusMatch7.6

redhat enterprise_linux_server_tusMatch7.6

redhat enterprise_linux_workstationMatch6.0

redhat enterprise_linux_workstationMatch7.0

Node

mozilla firefoxRange<60.0

mozilla firefox_esrRange<52.8.0

mozilla thunderbirdRange<52.8.0

mozilla thunderbird_esrRange<52.8.0

Node

canonical ubuntu_linuxMatch14.04lts

canonical ubuntu_linuxMatch16.04lts

canonical ubuntu_linuxMatch17.10

canonical ubuntu_linuxMatch18.04lts

[
  {
    "product": "Thunderbird",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "52.8",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Thunderbird ESR",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "52.8",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Firefox",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "60",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Firefox ESR",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "52.8",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
access	www.access.redhat.com/errata/RHSA-2018:1414
debian	www.debian.org/security/2018/dsa-4199
mozilla	www.mozilla.org/security/advisories/mfsa2018-11/
debian	www.debian.org/security/2018/dsa-4209
mozilla	www.mozilla.org/security/advisories/mfsa2018-12/
securitytracker	www.securitytracker.com/id/1040896
usn	www.usn.ubuntu.com/3660-1/
security	www.security.gentoo.org/glsa/201810-01
security	www.security.gentoo.org/glsa/201811-13
lists	www.lists.debian.org/debian-lts-announce/2018/05/msg00007.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Jun 2018 21:29Current

7High risk

Vulners AI Score7

CVSS27.5

CVSS39.8

EPSS0.03852

CWE-416