CVE-2018-5123
CVE-2018-5123
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Apr 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A third party website can access information available to a user with access to a restricted bug entry using the image generation in report.cgi in all Bugzilla versions prior to 4.4.
Affected products
Mozilla · BugzillaWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →