VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
cvssv3	3.3	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6942.json
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
epss	0.00316	https://api.first.org/data/v1/epss?cve=CVE-2018-6942
cvssv2	4.3	https://nvd.nist.gov/vuln/detail/CVE-2018-6942
cvssv3	6.5	https://nvd.nist.gov/vuln/detail/CVE-2018-6942
archlinux	Low	https://security.archlinux.org/AVG-613

System

Score

Found at

cvssv3

3.3

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6942.json

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

epss

0.00316

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

cvssv2

4.3

https://nvd.nist.gov/vuln/detail/CVE-2018-6942

cvssv3

6.5

https://nvd.nist.gov/vuln/detail/CVE-2018-6942

archlinux

Low

https://security.archlinux.org/AVG-613

Reference id	Reference type	URL
		http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00054.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6942.json
		https://api.first.org/data/v1/epss?cve=CVE-2018-6942
		https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5736
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6942
		https://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=29c759284e305ec428703c9a5831d0b1fc3497ef
		https://www.oracle.com/security-alerts/cpuapr2020.html
1544771		https://bugzilla.redhat.com/show_bug.cgi?id=1544771
890450		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890450
ASA-201805-3		https://security.archlinux.org/ASA-201805-3
AVG-613		https://security.archlinux.org/AVG-613
cpe:2.3:a:freetype:freetype::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freetype:freetype::::::::
cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
CVE-2018-6942		https://nvd.nist.gov/vuln/detail/CVE-2018-6942
USN-3572-1		https://usn.ubuntu.com/3572-1/

Reference id

Reference type

URL

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00054.html

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6942.json

https://api.first.org/data/v1/epss?cve=CVE-2018-6942

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5736

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6942

https://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=29c759284e305ec428703c9a5831d0b1fc3497ef

https://www.oracle.com/security-alerts/cpuapr2020.html

1544771

https://bugzilla.redhat.com/show_bug.cgi?id=1544771

890450

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890450

ASA-201805-3

https://security.archlinux.org/ASA-201805-3

AVG-613

https://security.archlinux.org/AVG-613

cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*

CVE-2018-6942

https://nvd.nist.gov/vuln/detail/CVE-2018-6942

USN-3572-1

https://usn.ubuntu.com/3572-1/

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T08:35:41.514018+00:00	Alpine Linux Importer	Import	https://secdb.alpinelinux.org/v3.12/main.json	37.0.0

2025-07-31T08:35:41.514018+00:00

Alpine Linux Importer

Import

https://secdb.alpinelinux.org/v3.12/main.json

37.0.0

Vulnerability ID	VCID-xxdy-qcnu-23cn
Aliases	CVE-2018-6942
Summary	An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.
Status	Published
Exploitability	0.5
Weighted Severity	5.9
Risk	3.0
Affected and Fixed Packages	Package Details

Percentile	0.54088
EPSS Score	0.00316
Published At	July 30, 2025, 12:55 p.m.