[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-12390":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T14:55:36.164Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":118,"related":119,"reserved_at":9,"published_at":131,"modified_at":132,"state":133,"summary":134,"references_raw":143,"kevs":235,"epss":236,"epss_history":239,"metrics":493,"affected":502},"CVE-2018-12390","Mozilla developers and community members reported memory safety bugs present in Firefox 62 and Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox \u003C 63, Firefox ESR \u003C 60.3, and Thunderbird \u003C 60.3.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116],{"_key":73},"SUSE-SU-2018:3749-2",{"_key":75},"RHSA-2018:3005",{"_key":77},"RHSA-2018:3006",{"_key":79},"RHSA-2018:3531",{"_key":81},"RHSA-2018:3532",{"_key":83},"OPENSUSE-SU-2024:10601-1",{"_key":85},"SUSE-SU-2018:3656-1",{"_key":87},"SUSE-SU-2018:3749-1",{"_key":89},"SUSE-SU-2018:3749-3",{"_key":91},"SUSE-SU-2018:3769-1",{"_key":93},"OPENSUSE-SU-2018:3687-1",{"_key":95},"OPENSUSE-SU-2024:10600-1",{"_key":97},"OPENSUSE-SU-2024:14572-1",{"_key":99},"DLA-1571-1",{"_key":101},"DLA-1575-1",{"_key":103},"DSA-4324-1",{"_key":105},"DSA-4337-1",{"_key":107},"MGASA-2018-0420",{"_key":109},"MGASA-2018-0480",{"_key":111},"UBUNTU-CVE-2018-12390",{"_key":113},"USN-3801-1",{"_key":115},"USN-3868-1",{"_key":117},"DEBIAN-CVE-2018-12390",[],[120,121,122,123,124,125,126,127,128,129,130],{"_key":73},{"_key":83},{"_key":85},{"_key":87},{"_key":89},{"_key":91},{"_key":93},{"_key":95},{"_key":97},{"_key":107},{"_key":109},"2019-02-28T18:00:00.000Z","2024-08-05T08:30:59.986Z","Modified",{"cisa_kev":135,"cisa_ransomware":135,"cisa_vendor":9,"epss_severity":136,"epss_score":137,"severity":138,"severity_score":139,"severity_version":140,"severity_source":141,"severity_vector":142,"severity_status":133},false,"low",0.02135,"critical",9.8,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[144,152,158,164,168,174,179,183,187,192,196,201,205,209,214,218,222,226,230],{"url":145,"sources":146,"tags":148},"http://www.securityfocus.com/bid/105769",[147,141],"cve.org",[149,150,151],"VDB Entry","X Refsource BID","Third Party Advisory",{"url":153,"sources":154,"tags":155},"https://www.debian.org/security/2018/dsa-4324",[147,141],[156,157,151],"Vendor Advisory","X Refsource DEBIAN",{"url":159,"sources":160,"tags":161},"https://www.mozilla.org/security/advisories/mfsa2018-28/",[147,141],[162,163,156],"X Refsource CONFIRM","Patch",{"url":165,"sources":166,"tags":167},"https://www.mozilla.org/security/advisories/mfsa2018-26/",[147,141],[162,163,156],{"url":169,"sources":170,"tags":171},"https://lists.debian.org/debian-lts-announce/2018/11/msg00011.html",[147,141],[172,173,151],"Mailing List","X Refsource MLIST",{"url":175,"sources":176,"tags":177},"https://security.gentoo.org/glsa/201811-04",[147,141],[156,178,151],"X Refsource GENTOO",{"url":180,"sources":181,"tags":182},"https://security.gentoo.org/glsa/201811-13",[147,141],[156,178,151],{"url":184,"sources":185,"tags":186},"https://www.debian.org/security/2018/dsa-4337",[147,141],[156,157,151],{"url":188,"sources":189,"tags":190},"https://bugzilla.mozilla.org/buglist.cgi?bug_id=1487098%2C1487660%2C1490234%2C1496159%2C1443748%2C1496340%2C1483905%2C1493347%2C1488803%2C1498701%2C1498482%2C1442010%2C1495245%2C1483699%2C1469486%2C1484905%2C1490561%2C1492524%2C1481844",[147,141],[162,191,163,156],"Issue Tracking",{"url":193,"sources":194,"tags":195},"https://www.mozilla.org/security/advisories/mfsa2018-27/",[147,141],[162,163,156],{"url":197,"sources":198,"tags":199},"https://access.redhat.com/errata/RHSA-2018:3005",[147,141],[156,200,151],"X Refsource REDHAT",{"url":202,"sources":203,"tags":204},"http://www.securityfocus.com/bid/105718",[147,141],[149,150,151],{"url":206,"sources":207,"tags":208},"https://access.redhat.com/errata/RHSA-2018:3006",[147,141],[156,200,151],{"url":210,"sources":211,"tags":212},"https://usn.ubuntu.com/3801-1/",[147,141],[156,213,151],"X Refsource UBUNTU",{"url":215,"sources":216,"tags":217},"https://usn.ubuntu.com/3868-1/",[147,141],[156,213,151],{"url":219,"sources":220,"tags":221},"https://access.redhat.com/errata/RHSA-2018:3532",[147,141],[156,200,151],{"url":223,"sources":224,"tags":225},"https://access.redhat.com/errata/RHSA-2018:3531",[147,141],[156,200,151],{"url":227,"sources":228,"tags":229},"https://lists.debian.org/debian-lts-announce/2018/11/msg00008.html",[147,141],[172,173,151],{"url":231,"sources":232,"tags":233},"http://www.securitytracker.com/id/1041944",[147,141],[149,234,151],"X Refsource SECTRACK",[],{"date":237,"score":137,"percentile":238},"2026-06-06",0.84532,[240,244,247,249,252,255,257,259,262,265,268,271,273,275,278,281,284,287,290,293,296,299,302,304,307,310,313,316,319,322,325,328,331,334,336,339,342,345,348,351,354,358,361,363,366,369,371,374,376,378,381,383,385,388,392,395,398,400,403,405,407,410,413,416,419,421,423,426,429,432,434,436,439,441,444,447,451,454,457,460,463,466,469,472,475,478,481,485,488,491],{"date":241,"score":242,"percentile":243},"2025-11-04",0.09642,0.92536,{"date":245,"score":242,"percentile":246},"2025-11-05",0.92538,{"date":248,"score":242,"percentile":246},"2025-11-06",{"date":250,"score":242,"percentile":251},"2025-11-07",0.92542,{"date":253,"score":242,"percentile":254},"2025-11-08",0.92539,{"date":256,"score":242,"percentile":246},"2025-11-09",{"date":258,"score":242,"percentile":246},"2025-11-10",{"date":260,"score":242,"percentile":261},"2025-11-11",0.92543,{"date":263,"score":242,"percentile":264},"2025-11-12",0.9255,{"date":266,"score":242,"percentile":267},"2025-11-13",0.92553,{"date":269,"score":242,"percentile":270},"2025-11-14",0.92556,{"date":272,"score":242,"percentile":264},"2025-11-15",{"date":274,"score":242,"percentile":270},"2025-11-16",{"date":276,"score":242,"percentile":277},"2025-11-17",0.92552,{"date":279,"score":242,"percentile":280},"2025-11-18",0.92074,{"date":282,"score":242,"percentile":283},"2025-11-19",0.92078,{"date":285,"score":242,"percentile":286},"2025-11-20",0.92082,{"date":288,"score":242,"percentile":289},"2025-11-21",0.92571,{"date":291,"score":242,"percentile":292},"2025-11-22",0.92568,{"date":294,"score":242,"percentile":295},"2025-11-23",0.92575,{"date":297,"score":242,"percentile":298},"2025-11-24",0.92576,{"date":300,"score":242,"percentile":301},"2025-11-25",0.92577,{"date":303,"score":242,"percentile":298},"2025-11-26",{"date":305,"score":242,"percentile":306},"2025-11-27",0.92573,{"date":308,"score":242,"percentile":309},"2025-11-28",0.92565,{"date":311,"score":242,"percentile":312},"2025-11-29",0.92582,{"date":314,"score":242,"percentile":315},"2025-11-30",0.9258,{"date":317,"score":242,"percentile":318},"2025-12-01",0.92626,{"date":320,"score":242,"percentile":321},"2025-12-02",0.92631,{"date":323,"score":242,"percentile":324},"2025-12-03",0.92633,{"date":326,"score":242,"percentile":327},"2025-12-04",0.92589,{"date":329,"score":242,"percentile":330},"2025-12-05",0.92593,{"date":332,"score":242,"percentile":333},"2025-12-06",0.92597,{"date":335,"score":242,"percentile":330},"2025-12-07",{"date":337,"score":242,"percentile":338},"2025-12-08",0.92598,{"date":340,"score":242,"percentile":341},"2025-12-09",0.92599,{"date":343,"score":242,"percentile":344},"2025-12-10",0.92608,{"date":346,"score":242,"percentile":347},"2025-12-11",0.92612,{"date":349,"score":242,"percentile":350},"2025-12-12",0.92615,{"date":352,"score":242,"percentile":353},"2025-12-13",0.92607,{"date":355,"score":356,"percentile":357},"2025-12-14",0.09479,0.92529,{"date":359,"score":356,"percentile":360},"2025-12-15",0.92531,{"date":362,"score":356,"percentile":254},"2025-12-16",{"date":364,"score":356,"percentile":365},"2025-12-17",0.92544,{"date":367,"score":356,"percentile":368},"2025-12-18",0.92549,{"date":370,"score":356,"percentile":368},"2025-12-19",{"date":372,"score":356,"percentile":373},"2025-12-20",0.92548,{"date":375,"score":356,"percentile":373},"2025-12-21",{"date":377,"score":356,"percentile":365},"2025-12-22",{"date":379,"score":356,"percentile":380},"2025-12-23",0.92546,{"date":382,"score":356,"percentile":277},"2025-12-24",{"date":384,"score":356,"percentile":270},"2025-12-25",{"date":386,"score":356,"percentile":387},"2025-12-26",0.92555,{"date":389,"score":390,"percentile":391},"2025-12-27",0.04635,0.88987,{"date":393,"score":356,"percentile":394},"2025-12-28",0.92551,{"date":396,"score":356,"percentile":397},"2025-12-29",0.92547,{"date":399,"score":356,"percentile":264},"2025-12-30",{"date":401,"score":356,"percentile":402},"2025-12-31",0.92559,{"date":404,"score":356,"percentile":350},"2026-01-01",{"date":406,"score":356,"percentile":344},"2026-01-02",{"date":408,"score":356,"percentile":409},"2026-01-03",0.92606,{"date":411,"score":356,"percentile":412},"2026-01-04",0.92562,{"date":414,"score":356,"percentile":415},"2026-01-05",0.92561,{"date":417,"score":356,"percentile":418},"2026-01-06",0.92563,{"date":420,"score":356,"percentile":418},"2026-01-07",{"date":422,"score":356,"percentile":309},"2026-01-08",{"date":424,"score":356,"percentile":425},"2026-01-09",0.92569,{"date":427,"score":356,"percentile":428},"2026-01-10",0.9257,{"date":430,"score":356,"percentile":431},"2026-01-11",0.92567,{"date":433,"score":356,"percentile":431},"2026-01-12",{"date":435,"score":356,"percentile":292},"2026-01-13",{"date":437,"score":356,"percentile":438},"2026-01-14",0.92578,{"date":440,"score":356,"percentile":438},"2026-01-15",{"date":442,"score":356,"percentile":443},"2026-01-16",0.92581,{"date":445,"score":356,"percentile":446},"2026-01-17",0.92584,{"date":448,"score":449,"percentile":450},"2026-01-18",0.07291,0.91404,{"date":452,"score":449,"percentile":453},"2026-01-19",0.91405,{"date":455,"score":449,"percentile":456},"2026-01-20",0.91407,{"date":458,"score":449,"percentile":459},"2026-01-21",0.91411,{"date":461,"score":449,"percentile":462},"2026-01-22",0.91414,{"date":464,"score":449,"percentile":465},"2026-01-23",0.91422,{"date":467,"score":449,"percentile":468},"2026-01-24",0.91426,{"date":470,"score":449,"percentile":471},"2026-01-25",0.91425,{"date":473,"score":449,"percentile":474},"2026-01-26",0.91428,{"date":476,"score":449,"percentile":477},"2026-01-27",0.91431,{"date":479,"score":449,"percentile":480},"2026-01-28",0.91437,{"date":482,"score":483,"percentile":484},"2026-01-29",0.07182,0.91355,{"date":486,"score":483,"percentile":487},"2026-01-30",0.91354,{"date":489,"score":483,"percentile":490},"2026-01-31",0.91352,{"date":492,"score":483,"percentile":450},"2026-02-01",[494],{"source":141,"cvss_v2_0":495,"cvss_v3_0":500,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":496,"baseSeverity":9,"vectorString":497,"impactScore":498,"exploitabilityScore":499},7.5,"AV:N/AC:L/Au:N/C:P/I:P/A:P",6.4,10,{"baseScore":139,"baseSeverity":501,"vectorString":142,"impactScore":139,"exploitabilityScore":499},"CRITICAL",[503,518,527,543,552,558,567,573,579,586,591],{"ecosystem":9,"name":504,"vendor":505,"product":506,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":508},"ubuntu linux","canonical","ubuntu_linux","o",[509,512,514,516],{"version":510,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04","cpe",{"version":513,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":515,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":517,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.10",{"ecosystem":9,"name":519,"vendor":520,"product":521,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":522},"debian linux","debian","debian_linux",[523,525],{"version":524,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":526,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":528,"vendor":9,"product":528,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":529},"Firefox",[530,535,538],{"version":531,"is_range":532,"range_type":511,"version_start":9,"version_start_type":9,"version_end":533,"version_end_type":534,"fixed_in":9},"lt60.3.0",true,"60.3.0","excluding",{"version":536,"is_range":532,"range_type":511,"version_start":9,"version_start_type":9,"version_end":537,"version_end_type":534,"fixed_in":9},"lt63.0","63.0",{"version":539,"is_range":532,"range_type":147,"version_start":540,"version_start_type":541,"version_end":542,"version_end_type":534,"fixed_in":9},">= unspecified, \u003C 63","unspecified","including","63",{"ecosystem":9,"name":544,"vendor":545,"product":546,"cpe_part":547,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":548},"firefox esr","mozilla","firefox_esr","a",[549],{"version":550,"is_range":532,"range_type":147,"version_start":540,"version_start_type":541,"version_end":551,"version_end_type":534,"fixed_in":9},">= unspecified, \u003C 60.3","60.3",{"ecosystem":9,"name":553,"vendor":545,"product":554,"cpe_part":547,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":555},"Thunderbird","thunderbird",[556,557],{"version":531,"is_range":532,"range_type":511,"version_start":9,"version_start_type":9,"version_end":533,"version_end_type":534,"fixed_in":9},{"version":550,"is_range":532,"range_type":147,"version_start":540,"version_start_type":541,"version_end":551,"version_end_type":534,"fixed_in":9},{"ecosystem":9,"name":559,"vendor":560,"product":561,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":562},"enterprise linux desktop","redhat","enterprise_linux_desktop",[563,565],{"version":564,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"version":566,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":568,"vendor":560,"product":569,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":570},"enterprise linux server","enterprise_linux_server",[571,572],{"version":564,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":566,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":574,"vendor":560,"product":575,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":576},"enterprise linux server aus","enterprise_linux_server_aus",[577],{"version":578,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.6",{"ecosystem":9,"name":580,"vendor":560,"product":581,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":582},"enterprise linux server eus","enterprise_linux_server_eus",[583,585],{"version":584,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.5",{"version":578,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":587,"vendor":560,"product":588,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":589},"enterprise linux server tus","enterprise_linux_server_tus",[590],{"version":578,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":592,"vendor":560,"product":593,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":594},"enterprise linux workstation","enterprise_linux_workstation",[595,596],{"version":564,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":566,"is_range":135,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]