CVE-2018-5165 — Vulnetix

CVE-2018-5165 PUBLISHED

Reported by mozilla · Published June 11, 2018

In 32-bit versions of Firefox, the Adobe Flash plugin setting for "Enable Adobe Flash protected mode" is unchecked by default even though the Adobe Flash sandbox is actually enabled. The displayed state is the reverse of the true setting, resulting in user confusion. This could cause users to select this setting intending to activate it and inadvertently turn protections off. This vulnerability affects Firefox < 60.

Affected Products

Vendor	Product	Versions
Mozilla	Firefox	unspecified
Mozilla	Firefox	unspecified

Timeline

Jun 11, 2018 CVE Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 23, 2021 EPSS Score
Oct 24, 2021 EPSS Score
Feb 25, 2022 EPSS Score
Apr 28, 2022 EPSS Score
Jun 29, 2022 EPSS Score
Aug 31, 2022 EPSS Score
Nov 1, 2022 EPSS Score
Jan 2, 2023 EPSS Score
Mar 5, 2023 EPSS Score

References

x_refsource_CONFIRM
x_refsource_CONFIRM
1040896 vdb-entryx_refsource_SECTRACK
104139 vdb-entryx_refsource_BID

Open in Interactive Console →