Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/9030?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "type": "alpm", "namespace": "archlinux", "name": "thunderbird", "version": "52.8.0-1", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "60.0-1", "latest_non_vulnerable_version": "91.10-1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4618?format=api", "vulnerability_id": "VCID-1zx7-huga-7bb9", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12363.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12363.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02435", "scoring_system": "epss", "scoring_elements": "0.85488", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02435", "scoring_system": "epss", "scoring_elements": "0.85539", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595028", "reference_id": "1595028", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595028" }, { "reference_url": "https://security.archlinux.org/ASA-201806-14", "reference_id": "ASA-201806-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201806-14" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-727", "reference_id": "AVG-727", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-727" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15", "reference_id": "mfsa2018-15", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16", "reference_id": "mfsa2018-16", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17", "reference_id": "mfsa2018-17", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19", "reference_id": "mfsa2018-19", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2112", "reference_id": "RHSA-2018:2112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2113", "reference_id": "RHSA-2018:2113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3705-1/", "reference_id": "USN-3705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3705-1/" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12363" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1zx7-huga-7bb9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4621?format=api", "vulnerability_id": "VCID-2buv-g8vs-9kbv", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12366.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12366.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0102", "scoring_system": "epss", "scoring_elements": "0.77653", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0102", "scoring_system": "epss", "scoring_elements": "0.77721", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595031", "reference_id": "1595031", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595031" }, { "reference_url": "https://security.archlinux.org/ASA-201806-14", "reference_id": "ASA-201806-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201806-14" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-727", "reference_id": "AVG-727", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-727" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15", "reference_id": "mfsa2018-15", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16", "reference_id": "mfsa2018-16", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17", "reference_id": "mfsa2018-17", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19", "reference_id": "mfsa2018-19", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2112", "reference_id": "RHSA-2018:2112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2113", "reference_id": "RHSA-2018:2113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3705-1/", "reference_id": "USN-3705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3705-1/" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12366" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2buv-g8vs-9kbv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5588?format=api", "vulnerability_id": "VCID-36mb-1agb-b3hb", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5188.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5188.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04709", "scoring_system": "epss", "scoring_elements": "0.89608", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.04709", "scoring_system": "epss", "scoring_elements": "0.89643", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5188" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595040", "reference_id": "1595040", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595040" }, { "reference_url": "https://security.archlinux.org/ASA-201806-14", "reference_id": "ASA-201806-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201806-14" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-727", "reference_id": "AVG-727", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-727" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15", "reference_id": "mfsa2018-15", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16", "reference_id": "mfsa2018-16", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17", "reference_id": "mfsa2018-17", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19", "reference_id": "mfsa2018-19", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2112", "reference_id": "RHSA-2018:2112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2113", "reference_id": "RHSA-2018:2113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3705-1/", "reference_id": "USN-3705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3705-1/" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" }, { "reference_url": "https://usn.ubuntu.com/3749-1/", "reference_id": "USN-3749-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3749-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-5188" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-36mb-1agb-b3hb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4629?format=api", "vulnerability_id": "VCID-77gw-dgct-n7er", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12374.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12374.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73861", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00763", "scoring_system": "epss", "scoring_elements": "0.73935", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1598543", "reference_id": "1598543", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1598543" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12374" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-77gw-dgct-n7er" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4620?format=api", "vulnerability_id": "VCID-7mpn-8zr3-mbg9", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12365.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12365.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01951", "scoring_system": "epss", "scoring_elements": "0.83853", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01951", "scoring_system": "epss", "scoring_elements": "0.8391", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595030", "reference_id": "1595030", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595030" }, { "reference_url": "https://security.archlinux.org/ASA-201806-14", "reference_id": "ASA-201806-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201806-14" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-727", "reference_id": "AVG-727", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-727" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15", "reference_id": "mfsa2018-15", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16", "reference_id": "mfsa2018-16", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17", "reference_id": "mfsa2018-17", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19", "reference_id": "mfsa2018-19", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2112", "reference_id": "RHSA-2018:2112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2113", "reference_id": "RHSA-2018:2113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3705-1/", "reference_id": "USN-3705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3705-1/" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12365" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7mpn-8zr3-mbg9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4628?format=api", "vulnerability_id": "VCID-858m-nhgu-fuax", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12373.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12373.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.77879", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.77948", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1598529", "reference_id": "1598529", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1598529" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12373" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-858m-nhgu-fuax" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4627?format=api", "vulnerability_id": "VCID-d8kr-ymbk-jyb9", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12372.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12372.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73513", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73586", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1598538", "reference_id": "1598538", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1598538" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12372" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d8kr-ymbk-jyb9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4617?format=api", "vulnerability_id": "VCID-vd75-4yk9-rkdk", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12362.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02984", "scoring_system": "epss", "scoring_elements": "0.86834", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02984", "scoring_system": "epss", "scoring_elements": "0.86882", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595027", "reference_id": "1595027", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595027" }, { "reference_url": "https://security.archlinux.org/ASA-201806-14", "reference_id": "ASA-201806-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201806-14" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-727", "reference_id": "AVG-727", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-727" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15", "reference_id": "mfsa2018-15", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16", "reference_id": "mfsa2018-16", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17", "reference_id": "mfsa2018-17", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19", "reference_id": "mfsa2018-19", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2112", "reference_id": "RHSA-2018:2112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2113", "reference_id": "RHSA-2018:2113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3705-1/", "reference_id": "USN-3705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3705-1/" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12362" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vd75-4yk9-rkdk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4614?format=api", "vulnerability_id": "VCID-y76w-q39a-quep", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12359.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12359.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04919", "scoring_system": "epss", "scoring_elements": "0.89843", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.04919", "scoring_system": "epss", "scoring_elements": "0.89876", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595024", "reference_id": "1595024", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595024" }, { "reference_url": "https://security.archlinux.org/ASA-201806-14", "reference_id": "ASA-201806-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201806-14" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-727", "reference_id": "AVG-727", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-727" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15", "reference_id": "mfsa2018-15", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16", "reference_id": "mfsa2018-16", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17", "reference_id": "mfsa2018-17", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19", "reference_id": "mfsa2018-19", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2112", "reference_id": "RHSA-2018:2112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2113", "reference_id": "RHSA-2018:2113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3705-1/", "reference_id": "USN-3705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3705-1/" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12359" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y76w-q39a-quep" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4619?format=api", "vulnerability_id": "VCID-zaya-5y1t-gfe4", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12364.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12364.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02537", "scoring_system": "epss", "scoring_elements": "0.85776", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02537", "scoring_system": "epss", "scoring_elements": "0.85826", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595029", "reference_id": "1595029", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595029" }, { "reference_url": "https://security.archlinux.org/ASA-201806-14", "reference_id": "ASA-201806-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201806-14" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-727", "reference_id": "AVG-727", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-727" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15", "reference_id": "mfsa2018-15", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16", "reference_id": "mfsa2018-16", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17", "reference_id": "mfsa2018-17", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19", "reference_id": "mfsa2018-19", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2112", "reference_id": "RHSA-2018:2112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2113", "reference_id": "RHSA-2018:2113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3705-1/", "reference_id": "USN-3705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3705-1/" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12364" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zaya-5y1t-gfe4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4615?format=api", "vulnerability_id": "VCID-zghf-qz6a-9ffa", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12360.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12360.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03153", "scoring_system": "epss", "scoring_elements": "0.8719", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03153", "scoring_system": "epss", "scoring_elements": "0.87235", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12366" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12372" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5156" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5188" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595025", "reference_id": "1595025", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595025" }, { "reference_url": "https://security.archlinux.org/ASA-201806-14", "reference_id": "ASA-201806-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201806-14" }, { "reference_url": "https://security.archlinux.org/ASA-201807-4", "reference_id": "ASA-201807-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201807-4" }, { "reference_url": "https://security.archlinux.org/AVG-727", "reference_id": "AVG-727", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-727" }, { "reference_url": "https://security.archlinux.org/AVG-728", "reference_id": "AVG-728", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-728" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15", "reference_id": "mfsa2018-15", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16", "reference_id": "mfsa2018-16", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-16" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17", "reference_id": "mfsa2018-17", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-17" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18", "reference_id": "mfsa2018-18", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-18" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19", "reference_id": "mfsa2018-19", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2112", "reference_id": "RHSA-2018:2112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2113", "reference_id": "RHSA-2018:2113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2251", "reference_id": "RHSA-2018:2251", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2252", "reference_id": "RHSA-2018:2252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2252" }, { "reference_url": "https://usn.ubuntu.com/3705-1/", "reference_id": "USN-3705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3705-1/" }, { "reference_url": "https://usn.ubuntu.com/3714-1/", "reference_id": "USN-3714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9026?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ud-dwcv-qbaf" }, { "vulnerability": "VCID-8xbs-22ke-qqfb" }, { "vulnerability": "VCID-brdu-4qru-fyag" }, { "vulnerability": "VCID-w49g-qwy1-7fax" }, { "vulnerability": "VCID-wqg8-pk11-n7bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.9.1-1" } ], "aliases": [ "CVE-2018-12360" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zghf-qz6a-9ffa" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175740?format=api", "vulnerability_id": "VCID-4cus-czt6-c7cp", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5154.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5154.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02921", "scoring_system": "epss", "scoring_elements": "0.86751", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02921", "scoring_system": "epss", "scoring_elements": "0.86703", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576255", "reference_id": "1576255", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576255" }, { "reference_url": "https://security.archlinux.org/ASA-201805-10", "reference_id": "ASA-201805-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-10" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-693", "reference_id": "AVG-693", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-693" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11", "reference_id": "mfsa2018-11", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12", "reference_id": "mfsa2018-12", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1414", "reference_id": "RHSA-2018:1414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1415", "reference_id": "RHSA-2018:1415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3645-1/", "reference_id": "USN-3645-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3645-1/" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5154" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4cus-czt6-c7cp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5584?format=api", "vulnerability_id": "VCID-a3xp-232f-aqaj", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5155.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5155.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02921", "scoring_system": "epss", "scoring_elements": "0.86751", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02921", "scoring_system": "epss", "scoring_elements": "0.86703", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576257", "reference_id": "1576257", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576257" }, { "reference_url": "https://security.archlinux.org/ASA-201805-10", "reference_id": "ASA-201805-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-10" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-693", "reference_id": "AVG-693", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-693" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11", "reference_id": "mfsa2018-11", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12", "reference_id": "mfsa2018-12", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1414", "reference_id": "RHSA-2018:1414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1415", "reference_id": "RHSA-2018:1415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3645-1/", "reference_id": "USN-3645-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3645-1/" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5155" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a3xp-232f-aqaj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175743?format=api", "vulnerability_id": "VCID-ernz-rxak-13aq", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5159.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5159.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.37556", "scoring_system": "epss", "scoring_elements": "0.97302", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.37556", "scoring_system": "epss", "scoring_elements": "0.97294", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576260", "reference_id": "1576260", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576260" }, { "reference_url": "https://security.archlinux.org/ASA-201805-10", "reference_id": "ASA-201805-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-10" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-693", "reference_id": "AVG-693", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-693" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1541", "reference_id": "CVE-2018-5159", "reference_type": "exploit", "scores": [], "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1541" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/44759.html", "reference_id": "CVE-2018-5159", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/44759.html" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11", "reference_id": "mfsa2018-11", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12", "reference_id": "mfsa2018-12", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1414", "reference_id": "RHSA-2018:1414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1415", "reference_id": "RHSA-2018:1415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3645-1/", "reference_id": "USN-3645-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3645-1/" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5159" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ernz-rxak-13aq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175750?format=api", "vulnerability_id": "VCID-ftkv-287q-7yhf", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5184.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5184.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01035", "scoring_system": "epss", "scoring_elements": "0.778", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01035", "scoring_system": "epss", "scoring_elements": "0.77869", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580236", "reference_id": "1580236", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580236" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898631", "reference_id": "898631", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898631" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5184" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ftkv-287q-7yhf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175751?format=api", "vulnerability_id": "VCID-qjj3-jwna-5kew", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5185.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5185.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00329", "scoring_system": "epss", "scoring_elements": "0.56306", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00329", "scoring_system": "epss", "scoring_elements": "0.56425", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580241", "reference_id": "1580241", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580241" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5185" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qjj3-jwna-5kew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175748?format=api", "vulnerability_id": "VCID-wnwn-p7t7-j3ad", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5162.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5162.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00918", "scoring_system": "epss", "scoring_elements": "0.76395", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00918", "scoring_system": "epss", "scoring_elements": "0.76465", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580239", "reference_id": "1580239", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580239" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5162" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wnwn-p7t7-j3ad" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175749?format=api", "vulnerability_id": "VCID-xe3v-bns1-7kfm", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5170.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5170.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75806", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75877", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580240", "reference_id": "1580240", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580240" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5170" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xe3v-bns1-7kfm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175747?format=api", "vulnerability_id": "VCID-xtsn-d6vq-jyez", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5161.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5161.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00925", "scoring_system": "epss", "scoring_elements": "0.76488", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00925", "scoring_system": "epss", "scoring_elements": "0.76558", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580237", "reference_id": "1580237", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1580237" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5161" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xtsn-d6vq-jyez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175746?format=api", "vulnerability_id": "VCID-xxdq-j8m1-kfcy", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5183.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5183.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03916", "scoring_system": "epss", "scoring_elements": "0.88567", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03916", "scoring_system": "epss", "scoring_elements": "0.88607", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576283", "reference_id": "1576283", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576283" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12", "reference_id": "mfsa2018-12", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1414", "reference_id": "RHSA-2018:1414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1415", "reference_id": "RHSA-2018:1415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5183" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xxdq-j8m1-kfcy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5582?format=api", "vulnerability_id": "VCID-y6f1-ymqj-abfx", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5150.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5150.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03916", "scoring_system": "epss", "scoring_elements": "0.88607", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.03916", "scoring_system": "epss", "scoring_elements": "0.88567", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576250", "reference_id": "1576250", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576250" }, { "reference_url": "https://security.archlinux.org/ASA-201805-10", "reference_id": "ASA-201805-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-10" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-693", "reference_id": "AVG-693", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-693" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11", "reference_id": "mfsa2018-11", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12", "reference_id": "mfsa2018-12", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1414", "reference_id": "RHSA-2018:1414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1415", "reference_id": "RHSA-2018:1415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3645-1/", "reference_id": "USN-3645-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3645-1/" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" }, { "reference_url": "https://usn.ubuntu.com/3688-1/", "reference_id": "USN-3688-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3688-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5150" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y6f1-ymqj-abfx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175745?format=api", "vulnerability_id": "VCID-z868-m9rr-hqh8", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5178.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5178.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18164", "scoring_system": "epss", "scoring_elements": "0.95339", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.18164", "scoring_system": "epss", "scoring_elements": "0.95353", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576278", "reference_id": "1576278", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576278" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12", "reference_id": "mfsa2018-12", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1414", "reference_id": "RHSA-2018:1414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1415", "reference_id": "RHSA-2018:1415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5178" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z868-m9rr-hqh8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/175744?format=api", "vulnerability_id": "VCID-zm2e-s2am-akae", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5168.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5168.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01032", "scoring_system": "epss", "scoring_elements": "0.77829", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01032", "scoring_system": "epss", "scoring_elements": "0.7776", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5150" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5157" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5158" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5159" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5161" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5162" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5168" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5185" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576269", "reference_id": "1576269", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576269" }, { "reference_url": "https://security.archlinux.org/ASA-201805-10", "reference_id": "ASA-201805-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-10" }, { "reference_url": "https://security.archlinux.org/ASA-201805-21", "reference_id": "ASA-201805-21", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201805-21" }, { "reference_url": "https://security.archlinux.org/AVG-693", "reference_id": "AVG-693", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-693" }, { "reference_url": "https://security.archlinux.org/AVG-707", "reference_id": "AVG-707", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-707" }, { "reference_url": "https://security.gentoo.org/glsa/201810-01", "reference_id": "GLSA-201810-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-01" }, { "reference_url": "https://security.gentoo.org/glsa/201811-13", "reference_id": "GLSA-201811-13", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-13" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11", "reference_id": "mfsa2018-11", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-11" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12", "reference_id": "mfsa2018-12", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-12" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13", "reference_id": "mfsa2018-13", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2018-13" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1414", "reference_id": "RHSA-2018:1414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1415", "reference_id": "RHSA-2018:1415", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1415" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1725", "reference_id": "RHSA-2018:1725", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1725" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1726", "reference_id": "RHSA-2018:1726", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1726" }, { "reference_url": "https://usn.ubuntu.com/3645-1/", "reference_id": "USN-3645-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3645-1/" }, { "reference_url": "https://usn.ubuntu.com/3660-1/", "reference_id": "USN-3660-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3660-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/9030?format=api", "purl": "pkg:alpm/archlinux/thunderbird@52.8.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1zx7-huga-7bb9" }, { "vulnerability": "VCID-2buv-g8vs-9kbv" }, { "vulnerability": "VCID-36mb-1agb-b3hb" }, { "vulnerability": "VCID-77gw-dgct-n7er" }, { "vulnerability": "VCID-7mpn-8zr3-mbg9" }, { "vulnerability": "VCID-858m-nhgu-fuax" }, { "vulnerability": "VCID-d8kr-ymbk-jyb9" }, { "vulnerability": "VCID-vd75-4yk9-rkdk" }, { "vulnerability": "VCID-y76w-q39a-quep" }, { "vulnerability": "VCID-zaya-5y1t-gfe4" }, { "vulnerability": "VCID-zghf-qz6a-9ffa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" } ], "aliases": [ "CVE-2018-5168" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zm2e-s2am-akae" } ], "risk_score": "4.5", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.8.0-1" }