[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-18498":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":31,"aliases":32,"duplicate_of":9,"upstream":33,"downstream":34,"duplicates":77,"related":78,"reserved_at":9,"published_at":88,"modified_at":89,"state":90,"summary":91,"references_raw":100,"kevs":175,"epss":176,"epss_history":179,"metrics":430,"affected":439},"CVE-2018-18498","A potential vulnerability leading to an integer overflow can occur during buffer size calculations for images when a raw value is used instead of the checked value. This leads to a possible out-of-bounds write. This vulnerability affects Thunderbird \u003C 60.4, Firefox ESR \u003C 60.4, and Firefox \u003C 64.",null,[11,24],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","weakness","Stable","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],{"_key":25,"id":25,"name":26,"description":27,"type":15,"status":28,"abstraction":17,"likelihood_of_exploit":29,"capec":30},"CWE-787","Out-of-bounds Write","The product writes data past the end, or before the beginning, of the intended buffer.","Draft","High",[],[],[],[],[35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75],{"_key":36},"OPENSUSE-SU-2019:0249-1",{"_key":38},"RHSA-2018:3831",{"_key":40},"RHSA-2018:3833",{"_key":42},"RHSA-2019:0159",{"_key":44},"RHSA-2019:0160",{"_key":46},"OPENSUSE-SU-2024:10601-1",{"_key":48},"SUSE-SU-2018:4235-1",{"_key":50},"SUSE-SU-2018:4236-1",{"_key":52},"SUSE-SU-2018:4236-2",{"_key":54},"SUSE-SU-2019:0338-1",{"_key":56},"OPENSUSE-SU-2024:10600-1",{"_key":58},"OPENSUSE-SU-2024:14572-1",{"_key":60},"DLA-1605-1",{"_key":62},"DLA-1624-1",{"_key":64},"DSA-4354-1",{"_key":66},"DSA-4362-1",{"_key":68},"MGASA-2018-0483",{"_key":70},"UBUNTU-CVE-2018-18498",{"_key":72},"USN-3844-1",{"_key":74},"USN-3868-1",{"_key":76},"DEBIAN-CVE-2018-18498",[],[79,80,81,82,83,84,85,86,87],{"_key":36},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":68},"2019-02-28T18:00:00.000Z","2024-08-05T11:08:21.886Z","Modified",{"cisa_kev":92,"cisa_ransomware":92,"cisa_vendor":9,"epss_severity":93,"epss_score":94,"severity":95,"severity_score":96,"severity_version":97,"severity_source":98,"severity_vector":99,"severity_status":90},false,"low",0.04116,"critical",9.8,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[101,108,115,120,124,129,134,139,145,149,153,157,161,165,171],{"url":102,"sources":103,"tags":105},"https://www.mozilla.org/security/advisories/mfsa2018-29/",[104,98],"cve.org",[106,107],"X Refsource CONFIRM","Vendor Advisory",{"url":109,"sources":110,"tags":111},"https://lists.debian.org/debian-lts-announce/2018/12/msg00002.html",[104,98],[112,113,114],"Mailing List","X Refsource MLIST","Third Party Advisory",{"url":116,"sources":117,"tags":118},"https://access.redhat.com/errata/RHSA-2018:3833",[104,98],[107,119,114],"X Refsource REDHAT",{"url":121,"sources":122,"tags":123},"https://access.redhat.com/errata/RHSA-2018:3831",[104,98],[107,119,114],{"url":125,"sources":126,"tags":127},"https://www.debian.org/security/2019/dsa-4362",[104,98],[107,128,114],"X Refsource DEBIAN",{"url":130,"sources":131,"tags":132},"https://security.gentoo.org/glsa/201903-04",[104,98],[107,133,114],"X Refsource GENTOO",{"url":135,"sources":136,"tags":137},"https://usn.ubuntu.com/3844-1/",[104,98],[107,138,114],"X Refsource UBUNTU",{"url":140,"sources":141,"tags":142},"http://www.securityfocus.com/bid/106168",[104,98],[143,144,114],"VDB Entry","X Refsource BID",{"url":146,"sources":147,"tags":148},"https://access.redhat.com/errata/RHSA-2019:0159",[104,98],[107,119,114],{"url":150,"sources":151,"tags":152},"https://www.mozilla.org/security/advisories/mfsa2018-31/",[104,98],[106,107],{"url":154,"sources":155,"tags":156},"https://www.mozilla.org/security/advisories/mfsa2018-30/",[104,98],[106,107],{"url":158,"sources":159,"tags":160},"https://www.debian.org/security/2018/dsa-4354",[104,98],[107,128,114],{"url":162,"sources":163,"tags":164},"https://usn.ubuntu.com/3868-1/",[104,98],[107,138,114],{"url":166,"sources":167,"tags":168},"https://bugzilla.mozilla.org/show_bug.cgi?id=1500011",[104,98],[106,169,170,107],"Issue Tracking","Permissions Required",{"url":172,"sources":173,"tags":174},"https://access.redhat.com/errata/RHSA-2019:0160",[104,98],[107,119,114],[],{"date":177,"score":94,"percentile":178},"2026-06-05",0.88829,[180,184,187,190,193,196,198,202,205,209,212,215,217,220,223,226,229,232,235,238,241,244,246,248,251,254,257,259,262,265,268,271,273,276,279,281,283,286,289,292,295,299,302,305,308,311,314,317,320,323,325,328,331,333,337,340,343,346,349,352,355,357,360,362,364,367,369,371,374,377,379,381,383,386,389,392,394,396,398,400,402,405,408,410,413,416,419,423,425,427],{"date":181,"score":182,"percentile":183},"2025-11-04",0.03792,0.87574,{"date":185,"score":182,"percentile":186},"2025-11-05",0.87575,{"date":188,"score":182,"percentile":189},"2025-11-06",0.8757,{"date":191,"score":182,"percentile":192},"2025-11-07",0.87576,{"date":194,"score":182,"percentile":195},"2025-11-08",0.87579,{"date":197,"score":182,"percentile":183},"2025-11-09",{"date":199,"score":200,"percentile":201},"2025-11-10",0.03588,0.87252,{"date":203,"score":200,"percentile":204},"2025-11-11",0.87257,{"date":206,"score":207,"percentile":208},"2025-11-12",0.08106,0.91779,{"date":210,"score":207,"percentile":211},"2025-11-13",0.91781,{"date":213,"score":207,"percentile":214},"2025-11-14",0.91783,{"date":216,"score":207,"percentile":208},"2025-11-15",{"date":218,"score":207,"percentile":219},"2025-11-16",0.91789,{"date":221,"score":207,"percentile":222},"2025-11-17",0.9179,{"date":224,"score":207,"percentile":225},"2025-11-18",0.9128,{"date":227,"score":207,"percentile":228},"2025-11-19",0.91284,{"date":230,"score":207,"percentile":231},"2025-11-20",0.91289,{"date":233,"score":207,"percentile":234},"2025-11-21",0.91797,{"date":236,"score":207,"percentile":237},"2025-11-22",0.91796,{"date":239,"score":207,"percentile":240},"2025-11-23",0.91801,{"date":242,"score":207,"percentile":243},"2025-11-24",0.91802,{"date":245,"score":207,"percentile":240},"2025-11-25",{"date":247,"score":207,"percentile":243},"2025-11-26",{"date":249,"score":207,"percentile":250},"2025-11-27",0.918,{"date":252,"score":207,"percentile":253},"2025-11-28",0.91792,{"date":255,"score":207,"percentile":256},"2025-11-29",0.91818,{"date":258,"score":207,"percentile":256},"2025-11-30",{"date":260,"score":207,"percentile":261},"2025-12-01",0.91862,{"date":263,"score":207,"percentile":264},"2025-12-02",0.91864,{"date":266,"score":207,"percentile":267},"2025-12-03",0.91866,{"date":269,"score":207,"percentile":270},"2025-12-04",0.91815,{"date":272,"score":207,"percentile":256},"2025-12-05",{"date":274,"score":207,"percentile":275},"2025-12-06",0.91822,{"date":277,"score":207,"percentile":278},"2025-12-07",0.91819,{"date":280,"score":207,"percentile":256},"2025-12-08",{"date":282,"score":207,"percentile":275},"2025-12-09",{"date":284,"score":207,"percentile":285},"2025-12-10",0.9183,{"date":287,"score":207,"percentile":288},"2025-12-11",0.91832,{"date":290,"score":207,"percentile":291},"2025-12-12",0.91834,{"date":293,"score":207,"percentile":294},"2025-12-13",0.91824,{"date":296,"score":297,"percentile":298},"2025-12-14",0.07965,0.91734,{"date":300,"score":297,"percentile":301},"2025-12-15",0.91737,{"date":303,"score":297,"percentile":304},"2025-12-16",0.91751,{"date":306,"score":297,"percentile":307},"2025-12-17",0.91757,{"date":309,"score":297,"percentile":310},"2025-12-18",0.91762,{"date":312,"score":297,"percentile":313},"2025-12-19",0.91766,{"date":315,"score":297,"percentile":316},"2025-12-20",0.91767,{"date":318,"score":297,"percentile":319},"2025-12-21",0.91768,{"date":321,"score":297,"percentile":322},"2025-12-22",0.91764,{"date":324,"score":297,"percentile":319},"2025-12-23",{"date":326,"score":297,"percentile":327},"2025-12-24",0.91777,{"date":329,"score":297,"percentile":330},"2025-12-25",0.9178,{"date":332,"score":297,"percentile":208},"2025-12-26",{"date":334,"score":335,"percentile":336},"2025-12-27",0.03852,0.87888,{"date":338,"score":297,"percentile":339},"2025-12-28",0.91775,{"date":341,"score":297,"percentile":342},"2025-12-29",0.91773,{"date":344,"score":297,"percentile":345},"2025-12-30",0.91778,{"date":347,"score":297,"percentile":348},"2025-12-31",0.91786,{"date":350,"score":297,"percentile":351},"2026-01-01",0.91846,{"date":353,"score":297,"percentile":354},"2026-01-02",0.91841,{"date":356,"score":297,"percentile":354},"2026-01-03",{"date":358,"score":297,"percentile":359},"2026-01-04",0.91794,{"date":361,"score":297,"percentile":222},"2026-01-05",{"date":363,"score":297,"percentile":253},"2026-01-06",{"date":365,"score":297,"percentile":366},"2026-01-07",0.91793,{"date":368,"score":297,"percentile":359},"2026-01-08",{"date":370,"score":297,"percentile":237},"2026-01-09",{"date":372,"score":297,"percentile":373},"2026-01-10",0.91798,{"date":375,"score":297,"percentile":376},"2026-01-11",0.91791,{"date":378,"score":297,"percentile":376},"2026-01-12",{"date":380,"score":297,"percentile":219},"2026-01-13",{"date":382,"score":297,"percentile":243},"2026-01-14",{"date":384,"score":297,"percentile":385},"2026-01-15",0.91806,{"date":387,"score":297,"percentile":388},"2026-01-16",0.91808,{"date":390,"score":297,"percentile":391},"2026-01-17",0.91812,{"date":393,"score":297,"percentile":388},"2026-01-18",{"date":395,"score":297,"percentile":391},"2026-01-19",{"date":397,"score":297,"percentile":270},"2026-01-20",{"date":399,"score":297,"percentile":278},"2026-01-21",{"date":401,"score":297,"percentile":275},"2026-01-22",{"date":403,"score":297,"percentile":404},"2026-01-23",0.91831,{"date":406,"score":297,"percentile":407},"2026-01-24",0.91837,{"date":409,"score":297,"percentile":407},"2026-01-25",{"date":411,"score":297,"percentile":412},"2026-01-26",0.9184,{"date":414,"score":297,"percentile":415},"2026-01-27",0.91842,{"date":417,"score":297,"percentile":418},"2026-01-28",0.91848,{"date":420,"score":421,"percentile":422},"2026-01-29",0.07848,0.91772,{"date":424,"score":421,"percentile":342},"2026-01-30",{"date":426,"score":421,"percentile":422},"2026-01-31",{"date":428,"score":421,"percentile":429},"2026-02-01",0.91817,[431],{"source":98,"cvss_v2_0":432,"cvss_v3_0":437,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":433,"baseSeverity":9,"vectorString":434,"impactScore":435,"exploitabilityScore":436},7.5,"AV:N/AC:L/Au:N/C:P/I:P/A:P",6.4,10,{"baseScore":96,"baseSeverity":438,"vectorString":99,"impactScore":96,"exploitabilityScore":436},"CRITICAL",[440,455,464,477,488,494,503,509,515,520,525],{"ecosystem":9,"name":441,"vendor":442,"product":443,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":445},"ubuntu linux","canonical","ubuntu_linux","o",[446,449,451,453],{"version":447,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04","cpe",{"version":450,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":452,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":454,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.10",{"ecosystem":9,"name":456,"vendor":457,"product":458,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":459},"debian linux","debian","debian_linux",[460,462],{"version":461,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":463,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":465,"vendor":9,"product":465,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":466},"Firefox",[467,472],{"version":468,"is_range":469,"range_type":448,"version_start":9,"version_start_type":9,"version_end":470,"version_end_type":471,"fixed_in":9},"lt64.0",true,"64.0","excluding",{"version":473,"is_range":469,"range_type":104,"version_start":474,"version_start_type":475,"version_end":476,"version_end_type":471,"fixed_in":9},">= unspecified, \u003C 64","unspecified","including","64",{"ecosystem":9,"name":478,"vendor":479,"product":480,"cpe_part":481,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":482},"firefox esr","mozilla","firefox_esr","a",[483,486],{"version":484,"is_range":469,"range_type":448,"version_start":9,"version_start_type":9,"version_end":485,"version_end_type":471,"fixed_in":9},"lt60.4","60.4",{"version":487,"is_range":469,"range_type":104,"version_start":474,"version_start_type":475,"version_end":485,"version_end_type":471,"fixed_in":9},">= unspecified, \u003C 60.4",{"ecosystem":9,"name":489,"vendor":479,"product":490,"cpe_part":481,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":491},"Thunderbird","thunderbird",[492,493],{"version":484,"is_range":469,"range_type":448,"version_start":9,"version_start_type":9,"version_end":485,"version_end_type":471,"fixed_in":9},{"version":487,"is_range":469,"range_type":104,"version_start":474,"version_start_type":475,"version_end":485,"version_end_type":471,"fixed_in":9},{"ecosystem":9,"name":495,"vendor":496,"product":497,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":498},"enterprise linux desktop","redhat","enterprise_linux_desktop",[499,501],{"version":500,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"version":502,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":504,"vendor":496,"product":505,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":506},"enterprise linux server","enterprise_linux_server",[507,508],{"version":500,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":502,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":510,"vendor":496,"product":511,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":512},"enterprise linux server aus","enterprise_linux_server_aus",[513],{"version":514,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.6",{"ecosystem":9,"name":516,"vendor":496,"product":517,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":518},"enterprise linux server eus","enterprise_linux_server_eus",[519],{"version":514,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":521,"vendor":496,"product":522,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":523},"enterprise linux server tus","enterprise_linux_server_tus",[524],{"version":514,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":526,"vendor":496,"product":527,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":528},"enterprise linux workstation","enterprise_linux_workstation",[529,530],{"version":500,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":502,"is_range":92,"range_type":448,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]