[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-DEBIAN-CVE-2018-12365":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T14:55:36.164Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":16,"duplicates":25,"related":26,"reserved_at":9,"published_at":27,"modified_at":28,"state":9,"summary":29,"references_raw":31,"kevs":38,"epss":9,"epss_history":39,"metrics":40,"affected":47},"DEBIAN-CVE-2018-12365","A compromised IPC child process can escape the content sandbox and list the names of arbitrary files on the file system without user consent or interaction. This could result in exposure of private local files. This vulnerability affects Thunderbird \u003C 60, Thunderbird \u003C 52.9, Firefox ESR \u003C 60.1, Firefox ESR \u003C 52.9, and Firefox \u003C 61.",null,[],[],[],[14],{"_key":15},"CVE-2018-12365",[17,19,21,23],{"_key":18},"DLA-1406-1",{"_key":20},"DLA-1425-1",{"_key":22},"DSA-4235-1",{"_key":24},"DSA-4244-1",[],[],"2018-10-18T13:29:02.400Z","2026-04-28T20:18:36.601740Z",{"cisa_kev":30,"cisa_ransomware":30,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[32],{"url":33,"sources":34,"tags":36},"https://security-tracker.debian.org/tracker/CVE-2018-12365",[35],"osv_debian",[37],"Advisory",[],[],[41],{"source":35,"cvss_v2_0":9,"cvss_v3_0":42,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":43,"baseSeverity":9,"vectorString":44,"impactScore":45,"exploitabilityScore":46},6.5,"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",6,7.2,[48,63],{"ecosystem":49,"name":50,"vendor":51,"product":50,"cpe_part":9,"purl_type":52,"purl_namespace":51,"purl_name":50,"source":9,"versions":53},"Debian","firefox-esr","debian","deb",[54,60,61,62],{"version":55,"is_range":56,"range_type":57,"version_start":9,"version_start_type":9,"version_end":58,"version_end_type":59,"fixed_in":9},"lt52_9_0esr_1",true,"ecosystem","52.9.0esr-1","excluding",{"version":55,"is_range":56,"range_type":57,"version_start":9,"version_start_type":9,"version_end":58,"version_end_type":59,"fixed_in":9},{"version":55,"is_range":56,"range_type":57,"version_start":9,"version_start_type":9,"version_end":58,"version_end_type":59,"fixed_in":9},{"version":55,"is_range":56,"range_type":57,"version_start":9,"version_start_type":9,"version_end":58,"version_end_type":59,"fixed_in":9},{"ecosystem":49,"name":64,"vendor":51,"product":64,"cpe_part":9,"purl_type":52,"purl_namespace":51,"purl_name":64,"source":9,"versions":65},"thunderbird",[66,69,70,71],{"version":67,"is_range":56,"range_type":57,"version_start":9,"version_start_type":9,"version_end":68,"version_end_type":59,"fixed_in":9},"lt1:52_9_0_1","1:52.9.0-1",{"version":67,"is_range":56,"range_type":57,"version_start":9,"version_start_type":9,"version_end":68,"version_end_type":59,"fixed_in":9},{"version":67,"is_range":56,"range_type":57,"version_start":9,"version_start_type":9,"version_end":68,"version_end_type":59,"fixed_in":9},{"version":67,"is_range":56,"range_type":57,"version_start":9,"version_start_type":9,"version_end":68,"version_end_type":59,"fixed_in":9}]