VDB

CVE-2018-5165

CVE-2018-5165 PUBLISHED

Reported by mozilla · Published June 11, 2018

In 32-bit versions of Firefox, the Adobe Flash plugin setting for "Enable Adobe Flash protected mode" is unchecked by default even though the Adobe Flash sandbox is actually enabled. The displayed state is the reverse of the true setting, resulting in user confusion. This could cause users to select this setting intending to activate it and inadvertently turn protections off. This vulnerability affects Firefox < 60.

Affected Products

VendorProductVersions
MozillaFirefoxunspecified
MozillaFirefoxunspecified

Exploit Intelligence

Timeline

  • Jun 11, 2018 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Feb 28, 2022 EPSS Score
  • May 2, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 5, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
  • Jan 8, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score

References

  • x_refsource_CONFIRM
  • x_refsource_CONFIRM
  • 1040896 vdb-entryx_refsource_SECTRACK
  • 104139 vdb-entryx_refsource_BID
Open in Interactive Console →
$ Console Community · 100/wk Open console ›