CVE-2018-18492

CWE-416 — Use After Free10 documents8 sources

Severity

9.8CRITICAL

EPSS

33.8%

top 3.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Firefox ESR Mozilla Thunderbird +8 more

Timeline

PublishedFeb 28

Latest updateMay 14

Description

A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages11 packages

▶CVEListV5mozilla/firefoxunspecified — 64

▶NVDmozilla/firefox< 60.4.0+1

▶CVEListV5mozilla/firefox_esrunspecified — 60.4

▶Ubuntufirefox< 64.0+build3-0ubuntu0.14.04.1+2

▶Debianfirefox-esr< 60.4.0esr-1+3

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 14.04, 16.04, 18.04, 18.10, Enterprise Linux 7.6

🔴Vulnerability Details

GHSA

GHSA-wjrm-cvj7-wvjg: A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection↗2022-05-14

▶

OSV

CVE-2018-18492: A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection↗2019-02-28

▶

CVEList

CVE-2018-18492: A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection↗2019-02-28

▶

OSV

firefox vulnerabilities↗2018-12-11

▶

📋Vendor Advisories

Ubuntu

Thunderbird vulnerabilities↗2019-01-24

▶

Ubuntu

Firefox vulnerabilities↗2018-12-11

▶

Red Hat

Mozilla: Use-after-free with select element↗2018-12-11

▶

Debian

CVE-2018-18492: firefox - A use-after-free vulnerability can occur after deleting a selection element due ...↗2018

▶

💬Community

Bugzilla

CVE-2018-18492 Mozilla: Use-after-free with select element↗2018-12-11

▶