CVE-2018-12389 vulnerability in Mozilla and Other Products
Published on February 28, 2019

Mozilla developers and community members reported memory safety bugs present in Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox ESR < 60.3 and Thunderbird < 60.3.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2018-12389

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-12389 are published in these products:

Mozilla FireFox Extended Support Release (ESR)

Mozilla Thunderbird

Canonical Ubuntu Linux

Debian Linux

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Server Aus

Red Hat Enterprise Linux Server Eus

Red Hat Enterprise Linux Server Tus

Red Hat Enterprise Linux Workstation

Affected Versions

Mozilla Firefox ESR:

Version unspecified and below 60.3 is affected.

Mozilla Thunderbird:

Version unspecified and below 60.3 is affected.

Exploit Probability

EPSS

1.77%

Percentile

82.36%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-12389 vulnerability in Mozilla and Other ProductsPublished on February 28, 2019

Products Associated with CVE-2018-12389

Affected Versions

Exploit Probability

CVE-2018-12389 vulnerability in Mozilla and Other Products
Published on February 28, 2019