Vulnerability CVE-2018-5187

Vulnerability Name:

CVE-2018-5187 (CCN-145351)

Assigned:

2018-06-26

Published:

2018-06-26

Updated:

2018-12-06

Summary:

Memory safety bugs present in Firefox 60 and Firefox ESR 60. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 60, Firefox ESR < 60.1, and Firefox < 61.

CVSS v3 Severity:

9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2018-5187

Source: BID
Type: Third Party Advisory, VDB Entry
104556

Source: CCN
Type: BID-104556
Mozilla Firefox and Firefox ESR Multiple Unspecified Memory Corruption Vulnerabilities

Source: CONFIRM
Type: Issue Tracking, Vendor Advisory
https://bugzilla.mozilla.org/buglist.cgi?bug_id=1461324%2C1414829%2C1395246%2C1467938%2C1461619%2C1425930%2C1438556%2C1454285%2C1459568%2C1463884

Source: XF
Type: UNKNOWN
firefox-cve20185187-code-exec(145351)

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20181112 [SECURITY] [DLA 1575-1] thunderbird security update

Source: GENTOO
Type: Third Party Advisory
GLSA-201810-01

Source: GENTOO
Type: Third Party Advisory
GLSA-201811-13

Source: UBUNTU
Type: Third Party Advisory
USN-3705-1

Source: DEBIAN
Type: Third Party Advisory
DSA-4295

Source: CCN
Type: Mozilla Foundation Security Advisory 2018-15
Security vulnerabilities fixed in Firefox 61

Source: CCN
Type: Mozilla Foundation Security Advisory 2018-16
Security vulnerabilities fixed in Firefox ESR 60.1

Source: CONFIRM
Type: Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2018-15/

Source: CONFIRM
Type: Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2018-16/

Source: CONFIRM
Type: Vendor Advisory
https://www.mozilla.org/security/advisories/mfsa2018-19/

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-5187

Vulnerable Configuration:

Configuration 1:

cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Configuration 3:

cpe:/a:mozilla:firefox:*:*:*:*:*:*:*:* (Version < 61.0)

OR cpe:/a:mozilla:firefox_esr:*:*:*:*:*:*:*:* (Version < 60.1.0)

OR cpe:/a:mozilla:thunderbird:*:*:*:*:*:*:*:* (Version < 60.0)

Configuration CCN 1:

cpe:/a:mozilla:firefox:60.0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox_esr:60.0.1:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:51572	P	Security update for supportutils (Moderate)	2022-11-29
oval:org.opensuse.security:def:645	P	Security update for php7 (Moderate) (in QA)	2022-10-04
oval:org.opensuse.security:def:20185187	V	CVE-2018-5187	2022-09-02
oval:org.opensuse.security:def:4635	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2022-06-28
oval:org.opensuse.security:def:3546	P	libICE6-1.0.8-12.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:95176	P	MozillaThunderbird-91.8.0-150200.8.65.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:4615	P	Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP5) (Important)	2022-05-23
oval:org.opensuse.security:def:4607	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2022-05-21
oval:org.opensuse.security:def:4740	P	Security update for the Linux RT Kernel (Critical)	2022-02-22
oval:org.opensuse.security:def:4680	P	Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP5) (Critical)	2022-02-16
oval:org.opensuse.security:def:111899	P	MozillaFirefox-92.0-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:64678	P	Security update for apache2 (Important)	2022-01-17
oval:org.opensuse.security:def:111905	P	MozillaThunderbird-91.1.1-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:1137	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:105478	P	MozillaThunderbird-91.1.1-1.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:105476	P	MozillaFirefox-92.0-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:66933	P	Security update for gd (Moderate)	2021-09-27
oval:org.opensuse.security:def:71352	P	openssh-7.9p1-4.7 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:64765	P	Security update for ghostscript (Critical)	2021-09-15
oval:org.opensuse.security:def:70289	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:47659	P	krb5-appl-clients-1.0.3-1.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47673	P	libXdmcp6-1.1.1-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47794	P	libtasn1-4.9-3.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47987	P	cyrus-sasl-2.1.26-8.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47658	P	krb5-1.12.5-40.28.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48119	P	libgraphite2-3-1.3.1-10.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48211	P	libunwind-1.1-11.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:101020	P	minicom-2.7.1-1.19 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1732	P	open-vm-tools-desktop-11.2.5-1.17 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1773	P	Security update for MozillaThunderbird (Important)	2021-07-22
oval:org.opensuse.security:def:68012	P	Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP1) (Important)	2021-07-14
oval:org.opensuse.security:def:4725	P	Security update for the Linux Kernel (Important)	2021-07-14
oval:org.opensuse.security:def:66841	P	Security update for freeradius-server (Moderate)	2021-06-23
oval:org.opensuse.security:def:48359	P	DirectFB-1.7.1-6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48719	P	freerdp-1.0.2-7.9 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48573	P	libzip2-0.11.1-12.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48784	P	libFLAC++6-32bit-1.3.0-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48657	P	yast2-3.1.206-36.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48815	P	raptor-2.0.10-3.67 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48886	P	telepathy-gabble-0.18.3-5.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:73624	P	Security update for graphviz (Critical)	2021-05-19
oval:org.opensuse.security:def:68112	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:52021	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:51738	P	Security update for perl-XML-Twig (Moderate)	2021-03-01
oval:org.opensuse.security:def:63563	P	MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107686	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117201	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63604	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2474	P	MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90092	P	MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71465	P	cups-filters-1.25.0-1.107 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2515	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:94307	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103747	P	MozillaThunderbird-60.6.1-3.28.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4896	P	Security update for ovmf (Moderate)	2020-12-02
oval:org.opensuse.security:def:4857	P	Security update for postgresql (Moderate)	2020-12-02
oval:org.opensuse.security:def:51466	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:4903	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:4916	P	Security update for mariadb (Moderate)	2020-12-02
oval:org.opensuse.security:def:5554	P	Security update for mutt (Important)	2020-12-02
oval:org.opensuse.security:def:5585	P	Security update for MozillaThunderbird (Important)	2020-12-02
oval:org.opensuse.security:def:4759	P	Security update for salt (Important)	2020-12-02
oval:org.opensuse.security:def:4889	P	Security update for dovecot23 (Important)	2020-12-02
oval:org.opensuse.security:def:4832	P	Security update for bind (Important)	2020-12-02
oval:org.opensuse.security:def:25024	P	Security update for nmap (Important)	2020-12-01
oval:org.opensuse.security:def:50897	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:50160	P	libpskc-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25151	P	Security update for file-roller (Low)	2020-12-01
oval:org.opensuse.security:def:50214	P	MozillaThunderbird on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25232	P	Security update for sudo (Important)	2020-12-01
oval:org.opensuse.security:def:26395	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:53685	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25289	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:73506	P	jcl-over-slf4j on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52220	P	Security update for go1.14 (Moderate)	2020-12-01
oval:org.opensuse.security:def:53759	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:70184	P	osc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25373	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:52292	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:50898	P	Security update for strongswan (Moderate)	2020-12-01
oval:org.opensuse.security:def:52129	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:25523	P	Security update for dpdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:26360	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:52328	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:50920	P	Security update for rubygem-bundler (Moderate)	2020-12-01
oval:org.opensuse.security:def:25664	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:25576	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50119	P	apache2-mod_php7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52409	P	Security update for fwupd (Moderate)	2020-12-01
oval:org.opensuse.security:def:51058	P	Security update for docker-runc (Moderate)	2020-12-01
oval:org.opensuse.security:def:25678	P	Security update for kernel-firmware (Important)	2020-12-01
oval:org.opensuse.security:def:24960	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:50173	P	MozillaThunderbird on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24949	P	Security update for postgresql10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:51295	P	Security update for sane-backends (Important)	2020-12-01
oval:org.opensuse.security:def:25722	P	Security update for ovmf (Low)	2020-12-01
oval:com.ubuntu.bionic:def:201851870000000	V	CVE-2018-5187 on Ubuntu 18.04 LTS (bionic) - medium.	2018-10-18
oval:com.ubuntu.xenial:def:20185187000	V	CVE-2018-5187 on Ubuntu 16.04 LTS (xenial) - medium.	2018-10-18
oval:com.ubuntu.xenial:def:201851870000000	V	CVE-2018-5187 on Ubuntu 16.04 LTS (xenial) - medium.	2018-10-18
oval:com.ubuntu.bionic:def:20185187000	V	CVE-2018-5187 on Ubuntu 18.04 LTS (bionic) - medium.	2018-10-18
oval:com.ubuntu.disco:def:201851870000000	V	CVE-2018-5187 on Ubuntu 19.04 (disco) - medium.	2018-10-18
oval:com.ubuntu.cosmic:def:20185187000	V	CVE-2018-5187 on Ubuntu 18.10 (cosmic) - medium.	2018-10-18
oval:com.ubuntu.cosmic:def:201851870000000	V	CVE-2018-5187 on Ubuntu 18.10 (cosmic) - medium.	2018-10-18
oval:com.ubuntu.trusty:def:20185187000	V	CVE-2018-5187 on Ubuntu 14.04 LTS (trusty) - medium.	2018-10-18
oval:com.ubuntu.artful:def:20185187000	V	CVE-2018-5187 on Ubuntu 17.10 (artful) - medium.	2018-06-27

BACK