CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2018-3586
https://notcve.org/view.php?id=CVE-2018-3586
An integer overflow to buffer overflow vulnerability exists in the ADSPRPC heap manager in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel. Existe una vulnerabilidad de desbordamiento de enteros y desbordamiento de búfer en en gestor de memoria dinámica (heap) ADSPRPC, en todas las distribuciones de Android de CAF (Android for MSM, Firefox OS for MSM y QRD Android) que utilizan el kernel de Linux. • https://source.android.com/security/bulletin/2018-07-01#qualcomm-components • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2018-5855
https://notcve.org/view.php?id=CVE-2018-5855
While padding or shrinking a nested wmi packet in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a buffer over-read can potentially occur. Al rellenar o encoger un paquete wmi anidado en todas las distribuciones de Android de CAF (Android for MSM, Firefox OS for MSM y QRD Android) que utilizan el kernel de Linux antes del parche de seguridad de nivel del 05/07/2018, puede ocurrir una sobrelectura de búfer. • http://www.securityfocus.com/bid/107770 https://source.android.com/security/bulletin/2018-07-01 https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qca-wifi-host-cmn/commit/?id=61f4a467177afc23bdc1944ec61e52bed156c104 https://www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 1%CPEs: 6EXPL: 0CVE-2018-12369
https://notcve.org/view.php?id=CVE-2018-12369
This vulnerability affects Firefox ESR < 60.1 and Firefox < 61. ... La vulnerabilidad afecta a Firefox ESR en versiones anteriores a la 60.1 y Firefox en versiones anteriores a la 61. • http://www.securityfocus.com/bid/104561 http://www.securitytracker.com/id/1041193 https://bugzilla.mozilla.org/show_bug.cgi?id=1454909 https://security.gentoo.org/glsa/201810-01 https://usn.ubuntu.com/3705-1 https://www.mozilla.org/security/advisories/mfsa2018-15 https://www.mozilla.org/security/advisories/mfsa2018-16 • CWE-863: Incorrect Authorization •
CVSS: 9.8EPSS: 1%CPEs: 5EXPL: 1CVE-2018-5186
https://notcve.org/view.php?id=CVE-2018-5186
Memory safety bugs present in Firefox 60. ... This vulnerability affects Firefox < 61. Hay errores de seguridad de memoria en Firefox 60. ... La vulnerabilidad afecta a Firefox en versiones anteriores a la 61. • http://www.securityfocus.com/bid/104557 http://www.securitytracker.com/id/1041193 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1464872%2C1463329%2C1419373%2C1412882%2C1413033%2C1444673%2C1454448%2C1453505%2C1438671 https://security.gentoo.org/glsa/201810-01 https://usn.ubuntu.com/3705-1 https://www.mozilla.org/security/advisories/mfsa2018-15 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 9EXPL: 0CVE-2018-5187
https://notcve.org/view.php?id=CVE-2018-5187
Memory safety bugs present in Firefox 60 and Firefox ESR 60. ... This vulnerability affects Thunderbird < 60, Firefox ESR < 60.1, and Firefox < 61. Hay errores de seguridad de memoria en Firefox 60 y Firefox ESR 60. ... La vulnerabilidad afecta a Thunderbird en versiones anteriores a la 60, Firefox ESR en versiones anteriores a la 60.1 y Firefox en versiones anteriores a la 61. • http://www.securityfocus.com/bid/104556 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1461324%2C1414829%2C1395246%2C1467938%2C1461619%2C1425930%2C1438556%2C1454285%2C1459568%2C1463884 https://lists.debian.org/debian-lts-announce/2018/11/msg00011.html https://security.gentoo.org/glsa/201810-01 https://security.gentoo.org/glsa/201811-13 https://usn.ubuntu.com/3705-1 https://www.debian.org/security/2018/dsa-4295 https://www.mozilla.org/security/advisories/mfsa2018-15 https://www.mozilla.org&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •