[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-12376":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T08:55:34.825Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":112,"related":113,"reserved_at":9,"published_at":123,"modified_at":124,"state":125,"summary":126,"references_raw":135,"kevs":218,"epss":219,"epss_history":222,"metrics":472,"affected":481},"CVE-2018-12376","Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003C 62, Firefox ESR \u003C 60.2, and Thunderbird \u003C 60.2.1.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110],{"_key":73},"SUSE-SU-2018:3591-1",{"_key":75},"SUSE-SU-2018:3591-2",{"_key":77},"OPENSUSE-SU-2024:10601-1",{"_key":79},"SUSE-SU-2018:2890-1",{"_key":81},"SUSE-SU-2018:3247-1",{"_key":83},"OPENSUSE-SU-2018:3687-1",{"_key":85},"OPENSUSE-SU-2024:10600-1",{"_key":87},"OPENSUSE-SU-2024:14572-1",{"_key":89},"DLA-1575-1",{"_key":91},"DSA-4287-1",{"_key":93},"DSA-4327-1",{"_key":95},"MGASA-2018-0480",{"_key":97},"UBUNTU-CVE-2018-12376",{"_key":99},"USN-3761-1",{"_key":101},"USN-3793-1",{"_key":103},"DEBIAN-CVE-2018-12376",{"_key":105},"RHSA-2018:2692",{"_key":107},"RHSA-2018:2693",{"_key":109},"RHSA-2018:3403",{"_key":111},"RHSA-2018:3458",[],[114,115,116,117,118,119,120,121,122],{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":83},{"_key":85},{"_key":87},{"_key":95},"2018-10-18T13:00:00.000Z","2024-08-05T08:30:59.941Z","Modified",{"cisa_kev":127,"cisa_ransomware":127,"cisa_vendor":9,"epss_severity":128,"epss_score":129,"severity":130,"severity_score":131,"severity_version":132,"severity_source":133,"severity_vector":134,"severity_status":125},false,"low",0.02953,"critical",9.8,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[136,144,150,155,161,165,170,174,179,184,188,192,197,201,206,210,214],{"url":137,"sources":138,"tags":140},"http://www.securityfocus.com/bid/105280",[139,133],"cve.org",[141,142,143],"VDB Entry","X Refsource BID","Third Party Advisory",{"url":145,"sources":146,"tags":147},"https://security.gentoo.org/glsa/201810-01",[139,133],[148,149,143],"Vendor Advisory","X Refsource GENTOO",{"url":151,"sources":152,"tags":153},"https://access.redhat.com/errata/RHSA-2018:2693",[139,133],[148,154,143],"X Refsource REDHAT",{"url":156,"sources":157,"tags":158},"https://lists.debian.org/debian-lts-announce/2018/11/msg00011.html",[139,133],[159,160,143],"Mailing List","X Refsource MLIST",{"url":162,"sources":163,"tags":164},"https://security.gentoo.org/glsa/201811-13",[139,133],[148,149,143],{"url":166,"sources":167,"tags":168},"https://www.debian.org/security/2018/dsa-4327",[139,133],[148,169,143],"X Refsource DEBIAN",{"url":171,"sources":172,"tags":173},"https://access.redhat.com/errata/RHSA-2018:3403",[139,133],[148,154,143],{"url":175,"sources":176,"tags":177},"https://www.mozilla.org/security/advisories/mfsa2018-20/",[139,133],[178,148],"X Refsource CONFIRM",{"url":180,"sources":181,"tags":182},"http://www.securitytracker.com/id/1041610",[139,133],[141,183,143],"X Refsource SECTRACK",{"url":185,"sources":186,"tags":187},"https://access.redhat.com/errata/RHSA-2018:2692",[139,133],[148,154,143],{"url":189,"sources":190,"tags":191},"https://access.redhat.com/errata/RHSA-2018:3458",[139,133],[148,154,143],{"url":193,"sources":194,"tags":195},"https://usn.ubuntu.com/3793-1/",[139,133],[148,196,143],"X Refsource UBUNTU",{"url":198,"sources":199,"tags":200},"https://www.mozilla.org/security/advisories/mfsa2018-21/",[139,133],[178,148],{"url":202,"sources":203,"tags":204},"https://bugzilla.mozilla.org/buglist.cgi?bug_id=1469309%2C1469914%2C1450989%2C1480092%2C1480517%2C1481093%2C1478575%2C1471953%2C1473161%2C1466991%2C1468738%2C1483120%2C1467363%2C1472925%2C1466577%2C1467889%2C1480521%2C1478849",[139,133],[178,205,143],"Issue Tracking",{"url":207,"sources":208,"tags":209},"https://www.mozilla.org/security/advisories/mfsa2018-25/",[139,133],[178,148],{"url":211,"sources":212,"tags":213},"https://usn.ubuntu.com/3761-1/",[139,133],[148,196,143],{"url":215,"sources":216,"tags":217},"https://www.debian.org/security/2018/dsa-4287",[139,133],[148,169,143],[],{"date":220,"score":129,"percentile":221},"2026-06-05",0.86749,[223,227,230,233,236,239,242,245,247,250,253,256,258,261,264,268,271,274,277,280,282,285,287,289,292,295,298,301,304,307,310,313,316,319,322,324,327,330,333,336,339,341,344,346,348,351,354,357,360,363,365,368,371,374,378,381,384,387,390,393,396,398,401,404,406,408,411,413,416,418,420,422,424,427,430,433,436,438,440,442,444,447,450,453,456,458,461,463,466,469],{"date":224,"score":225,"percentile":226},"2025-11-04",0.03107,0.86297,{"date":228,"score":225,"percentile":229},"2025-11-05",0.86301,{"date":231,"score":225,"percentile":232},"2025-11-06",0.86299,{"date":234,"score":225,"percentile":235},"2025-11-07",0.86308,{"date":237,"score":225,"percentile":238},"2025-11-08",0.86311,{"date":240,"score":225,"percentile":241},"2025-11-09",0.86305,{"date":243,"score":225,"percentile":244},"2025-11-10",0.86306,{"date":246,"score":225,"percentile":238},"2025-11-11",{"date":248,"score":225,"percentile":249},"2025-11-12",0.86318,{"date":251,"score":225,"percentile":252},"2025-11-13",0.86324,{"date":254,"score":225,"percentile":255},"2025-11-14",0.86327,{"date":257,"score":225,"percentile":249},"2025-11-15",{"date":259,"score":225,"percentile":260},"2025-11-16",0.86319,{"date":262,"score":225,"percentile":263},"2025-11-17",0.86309,{"date":265,"score":266,"percentile":267},"2025-11-18",0.05158,0.88855,{"date":269,"score":266,"percentile":270},"2025-11-19",0.88858,{"date":272,"score":266,"percentile":273},"2025-11-20",0.88863,{"date":275,"score":225,"percentile":276},"2025-11-21",0.8632,{"date":278,"score":225,"percentile":279},"2025-11-22",0.86314,{"date":281,"score":225,"percentile":235},"2025-11-23",{"date":283,"score":225,"percentile":284},"2025-11-24",0.8631,{"date":286,"score":225,"percentile":238},"2025-11-25",{"date":288,"score":225,"percentile":284},"2025-11-26",{"date":290,"score":225,"percentile":291},"2025-11-27",0.86312,{"date":293,"score":225,"percentile":294},"2025-11-28",0.86293,{"date":296,"score":225,"percentile":297},"2025-11-29",0.86365,{"date":299,"score":225,"percentile":300},"2025-11-30",0.86362,{"date":302,"score":225,"percentile":303},"2025-12-01",0.86415,{"date":305,"score":225,"percentile":306},"2025-12-02",0.86417,{"date":308,"score":225,"percentile":309},"2025-12-03",0.86416,{"date":311,"score":225,"percentile":312},"2025-12-04",0.86355,{"date":314,"score":225,"percentile":315},"2025-12-05",0.86357,{"date":317,"score":225,"percentile":318},"2025-12-06",0.86354,{"date":320,"score":225,"percentile":321},"2025-12-07",0.86343,{"date":323,"score":225,"percentile":321},"2025-12-08",{"date":325,"score":225,"percentile":326},"2025-12-09",0.86352,{"date":328,"score":225,"percentile":329},"2025-12-10",0.86374,{"date":331,"score":225,"percentile":332},"2025-12-11",0.86381,{"date":334,"score":225,"percentile":335},"2025-12-12",0.86383,{"date":337,"score":225,"percentile":338},"2025-12-13",0.86378,{"date":340,"score":225,"percentile":329},"2025-12-14",{"date":342,"score":225,"percentile":343},"2025-12-15",0.86371,{"date":345,"score":225,"percentile":338},"2025-12-16",{"date":347,"score":225,"percentile":332},"2025-12-17",{"date":349,"score":225,"percentile":350},"2025-12-18",0.86391,{"date":352,"score":225,"percentile":353},"2025-12-19",0.86393,{"date":355,"score":225,"percentile":356},"2025-12-20",0.86389,{"date":358,"score":225,"percentile":359},"2025-12-21",0.86392,{"date":361,"score":225,"percentile":362},"2025-12-22",0.86385,{"date":364,"score":225,"percentile":356},"2025-12-23",{"date":366,"score":225,"percentile":367},"2025-12-24",0.86395,{"date":369,"score":225,"percentile":370},"2025-12-25",0.86406,{"date":372,"score":225,"percentile":373},"2025-12-26",0.86409,{"date":375,"score":376,"percentile":377},"2025-12-27",0.02628,0.8532,{"date":379,"score":225,"percentile":380},"2025-12-28",0.86403,{"date":382,"score":225,"percentile":383},"2025-12-29",0.86397,{"date":385,"score":225,"percentile":386},"2025-12-30",0.86404,{"date":388,"score":225,"percentile":389},"2025-12-31",0.86414,{"date":391,"score":225,"percentile":392},"2026-01-01",0.8647,{"date":394,"score":225,"percentile":395},"2026-01-02",0.86473,{"date":397,"score":225,"percentile":395},"2026-01-03",{"date":399,"score":225,"percentile":400},"2026-01-04",0.86413,{"date":402,"score":225,"percentile":403},"2026-01-05",0.8641,{"date":405,"score":225,"percentile":400},"2026-01-06",{"date":407,"score":225,"percentile":400},"2026-01-07",{"date":409,"score":225,"percentile":410},"2026-01-08",0.8642,{"date":412,"score":225,"percentile":410},"2026-01-09",{"date":414,"score":225,"percentile":415},"2026-01-10",0.86419,{"date":417,"score":225,"percentile":400},"2026-01-11",{"date":419,"score":225,"percentile":403},"2026-01-12",{"date":421,"score":225,"percentile":370},"2026-01-13",{"date":423,"score":225,"percentile":415},"2026-01-14",{"date":425,"score":225,"percentile":426},"2026-01-15",0.86418,{"date":428,"score":225,"percentile":429},"2026-01-16",0.86422,{"date":431,"score":225,"percentile":432},"2026-01-17",0.86425,{"date":434,"score":225,"percentile":435},"2026-01-18",0.86426,{"date":437,"score":225,"percentile":415},"2026-01-19",{"date":439,"score":225,"percentile":389},"2026-01-20",{"date":441,"score":225,"percentile":415},"2026-01-21",{"date":443,"score":225,"percentile":435},"2026-01-22",{"date":445,"score":225,"percentile":446},"2026-01-23",0.86441,{"date":448,"score":225,"percentile":449},"2026-01-24",0.86449,{"date":451,"score":225,"percentile":452},"2026-01-25",0.86445,{"date":454,"score":225,"percentile":455},"2026-01-26",0.86442,{"date":457,"score":225,"percentile":452},"2026-01-27",{"date":459,"score":225,"percentile":460},"2026-01-28",0.86448,{"date":462,"score":225,"percentile":449},"2026-01-29",{"date":464,"score":225,"percentile":465},"2026-01-30",0.86453,{"date":467,"score":225,"percentile":468},"2026-01-31",0.86454,{"date":470,"score":225,"percentile":471},"2026-02-01",0.8652,[473],{"source":133,"cvss_v2_0":474,"cvss_v3_0":479,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":475,"baseSeverity":9,"vectorString":476,"impactScore":477,"exploitabilityScore":478},7.5,"AV:N/AC:L/Au:N/C:P/I:P/A:P",6.4,10,{"baseScore":131,"baseSeverity":480,"vectorString":134,"impactScore":131,"exploitabilityScore":478},"CRITICAL",[482,495,504,520,529,538,547,553,559,566,571],{"ecosystem":9,"name":483,"vendor":484,"product":485,"cpe_part":486,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":487},"ubuntu linux","canonical","ubuntu_linux","o",[488,491,493],{"version":489,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04","cpe",{"version":492,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":494,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"ecosystem":9,"name":496,"vendor":497,"product":498,"cpe_part":486,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":499},"debian linux","debian","debian_linux",[500,502],{"version":501,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":503,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":505,"vendor":9,"product":505,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":506},"Firefox",[507,512,515],{"version":508,"is_range":509,"range_type":490,"version_start":9,"version_start_type":9,"version_end":510,"version_end_type":511,"fixed_in":9},"lt60.2.0",true,"60.2.0","excluding",{"version":513,"is_range":509,"range_type":490,"version_start":9,"version_start_type":9,"version_end":514,"version_end_type":511,"fixed_in":9},"lt62.0","62.0",{"version":516,"is_range":509,"range_type":139,"version_start":517,"version_start_type":518,"version_end":519,"version_end_type":511,"fixed_in":9},">= unspecified, \u003C 62","unspecified","including","62",{"ecosystem":9,"name":521,"vendor":522,"product":523,"cpe_part":524,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":525},"firefox esr","mozilla","firefox_esr","a",[526],{"version":527,"is_range":509,"range_type":139,"version_start":517,"version_start_type":518,"version_end":528,"version_end_type":511,"fixed_in":9},">= unspecified, \u003C 60.2","60.2",{"ecosystem":9,"name":530,"vendor":522,"product":531,"cpe_part":524,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":532},"Thunderbird","thunderbird",[533,536],{"version":534,"is_range":509,"range_type":490,"version_start":9,"version_start_type":9,"version_end":535,"version_end_type":511,"fixed_in":9},"lt60.2.1","60.2.1",{"version":537,"is_range":509,"range_type":139,"version_start":517,"version_start_type":518,"version_end":535,"version_end_type":511,"fixed_in":9},">= unspecified, \u003C 60.2.1",{"ecosystem":9,"name":539,"vendor":540,"product":541,"cpe_part":486,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":542},"enterprise linux desktop","redhat","enterprise_linux_desktop",[543,545],{"version":544,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"version":546,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":548,"vendor":540,"product":549,"cpe_part":486,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":550},"enterprise linux server","enterprise_linux_server",[551,552],{"version":544,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":546,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":554,"vendor":540,"product":555,"cpe_part":486,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":556},"enterprise linux server aus","enterprise_linux_server_aus",[557],{"version":558,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.6",{"ecosystem":9,"name":560,"vendor":540,"product":561,"cpe_part":486,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":562},"enterprise linux server eus","enterprise_linux_server_eus",[563,565],{"version":564,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.5",{"version":558,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":567,"vendor":540,"product":568,"cpe_part":486,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":569},"enterprise linux server tus","enterprise_linux_server_tus",[570],{"version":558,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":572,"vendor":540,"product":573,"cpe_part":486,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":574},"enterprise linux workstation","enterprise_linux_workstation",[575,576],{"version":544,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":546,"is_range":127,"range_type":490,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]