VDB

CVE-2018-5121

CVE-2018-5121 PUBLISHED

Reported by mozilla · Published June 11, 2018

Low descenders on some Tibetan characters in several fonts on OS X are clipped when rendered in the addressbar. When used as part of an Internationalized Domain Name (IDN) this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 58.

Affected Products

VendorProductVersions
MozillaFirefoxunspecified
MozillaFirefoxunspecified

Timeline

  • Jun 11, 2018 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • May 2, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 5, 2022 EPSS Score
  • Jan 8, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score

References

  • 1040270 vdb-entryx_refsource_SECTRACK
  • x_refsource_CONFIRM
  • 102786 vdb-entryx_refsource_BID
  • x_refsource_CONFIRM
Open in Interactive Console →
$ Console Community · 100/wk Open console ›