Lucene search
MozillaCVELIST:CVE-2018-5163HistoryJun 11, 2018 - 9:00 p.m.
CVE-2018-5163
2018-06-1121:00:00
mozilla
www.cve.org
If a malicious attacker has used another vulnerability to gain full control over a content process, they may be able to replace the alternate data resources stored in the JavaScript Start-up Bytecode Cache (JSBC) for other JavaScript code. If the parent process then runs this replaced code, the executed script would be run with the parent process’ privileges, escaping the sandbox on content processes. This vulnerability affects Firefox < 60.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "60",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Code injection
2018-06-11 21:29:00
debiancve
debiancve
CVE-2018-5163
2018-06-11 21:29:15
nvd
nvd
CVE-2018-5163
2018-06-11 21:29:15
redhatcve
redhatcve
CVE-2018-5163
2018-05-10 06:22:54
cve
cve
CVE-2018-5163
2018-06-11 21:29:15
ubuntucve
ubuntucve
CVE-2018-5163
2018-05-11 00:00:00
openvas
openvas
Mozilla Firefox Security Advisories (MFSA2018-11, MFSA2018-12) - Windows
2018-05-11 00:00:00
Ubuntu: Security Advisory (USN-3645-2)
2018-05-19 00:00:00
Ubuntu: Security Advisory (USN-3645-1)
2018-05-12 00:00:00
ubuntu
ubuntu
Firefox regression
2018-05-18 00:00:00
Firefox vulnerabilities
2018-05-11 00:00:00
nessus
nessus
Mozilla Firefox < 60 Multiple Critical Vulnerabilities
2018-05-17 00:00:00
Mozilla Firefox < 60 Multiple Critical Vulnerabilities (macOS)
2018-05-17 00:00:00
archlinux
archlinux
[ASA-201805-10] firefox: multiple issues
2018-05-13 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox 60 — Mozilla
2018-05-09 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2018-05-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 60.0.1-alt1
2018-06-05 00:00:00
kaspersky
kaspersky
KLA11246 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2018-05-09 00:00:00