Home

CVE-2018-5147

Description

The libtremor library has the same flaw as CVE-2018-5146. This library is used by Firefox in place of libvorbis on Android and ARM platforms. This vulnerability affects Firefox ESR < 52.7.2 and Firefox < 59.0.1.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.425

Associated Vulnerability

VulnerabilityOS Platform
Vulnerability CVE-2018-5146,CVE-2018-5147 are affected in Mozilla Firefox 59.0Windows
Vulnerabilities CVE-2018-5146,CVE-2018-5147 are fixed in Update for Mozilla Firefox For Mac (59.0.1)Mac
Vulnerabilities CVE-2018-5146,CVE-2018-5147 are affected in Firefox ESR for Mac 52.7.1Mac
Vulnerabilities CVE-2018-5146,CVE-2018-5147 are affected in Mozilla Firefox for Mac 52.7.1Mac
Vulnerabilities CVE-2018-5146,CVE-2018-5147 are affected in Mozilla Firefox for Mac 59.0Mac
Vulnerabilities CVE-2018-5146,CVE-2018-5147 are fixed in Mozilla Firefox For Mac 52.7.2Mac
firefox-esr security update(DSA-4143-1) firefox-esr_52.7.2esr-1~deb8u1_i386.debLinux
firefox-esr security update(DSA-4143-1) firefox-esr_52.7.2esr-1~deb8u1_amd64.debLinux
firefox-esr security update(DSA-4143-1) firefox-esr_52.7.2esr-1~deb9u1_i386.debLinux
firefox-esr security update(DSA-4143-1) firefox-esr_52.7.2esr-1~deb9u1_amd64.debLinux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-343015Mozilla Firefox (132.0.2)
PATCH-607000Mozilla Firefox For Mac (124.0)
PATCH-611808Mozilla Firefox ESR for MAC 128.14.0
PATCH-611870Mozilla Firefox For Mac (142.0.1)
PATCH-611870Mozilla Firefox For Mac (142.0.1)
PATCH-612783Mozilla Firefox For Mac (145.0.1)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234