CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-18398

Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the IBus-Unikey input method for file searches within File Manager, leading to an out-of-bounds read and SEGV. This could potentially be exploited by an arbitrary local user who creates files in /tmp before the victim uses this input method.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.7%

CVSS Severity

CVSS v3 Score 4.7

CVSS v2 Score 1.9

References

Products affected by CVE-2018-18398

Xfce » Thunar » Version: 0.3.0

cpe:2.3:a:xfce:thunar:0.3.0
Xfce » Thunar » Version: 0.3.2

cpe:2.3:a:xfce:thunar:0.3.2
Xfce » Thunar » Version: 0.4.0

cpe:2.3:a:xfce:thunar:0.4.0
Xfce » Thunar » Version: 0.5.0

cpe:2.3:a:xfce:thunar:0.5.0
Xfce » Thunar » Version: 0.8.0

cpe:2.3:a:xfce:thunar:0.8.0
Xfce » Thunar » Version: 0.9.0

cpe:2.3:a:xfce:thunar:0.9.0
Xfce » Thunar » Version: 0.9.80

cpe:2.3:a:xfce:thunar:0.9.80
Xfce » Thunar » Version: 0.9.91

cpe:2.3:a:xfce:thunar:0.9.91
Xfce » Thunar » Version: 0.9.92

cpe:2.3:a:xfce:thunar:0.9.92
Xfce » Thunar » Version: 0.9.93

cpe:2.3:a:xfce:thunar:0.9.93
Xfce » Thunar » Version: 0.9.99.1

cpe:2.3:a:xfce:thunar:0.9.99.1
Xfce » Thunar » Version: 1.0.0

cpe:2.3:a:xfce:thunar:1.0.0
Xfce » Thunar » Version: 1.0.1

cpe:2.3:a:xfce:thunar:1.0.1
Xfce » Thunar » Version: 1.0.2

cpe:2.3:a:xfce:thunar:1.0.2
Xfce » Thunar » Version: 1.1.0

cpe:2.3:a:xfce:thunar:1.1.0
Xfce » Thunar » Version: 1.1.1

cpe:2.3:a:xfce:thunar:1.1.1
Xfce » Thunar » Version: 1.1.2

cpe:2.3:a:xfce:thunar:1.1.2
Xfce » Thunar » Version: 1.1.3

cpe:2.3:a:xfce:thunar:1.1.3
Xfce » Thunar » Version: 1.1.4

cpe:2.3:a:xfce:thunar:1.1.4
Xfce » Thunar » Version: 1.1.5

cpe:2.3:a:xfce:thunar:1.1.5
Xfce » Thunar » Version: 1.1.6

cpe:2.3:a:xfce:thunar:1.1.6
Xfce » Thunar » Version: 1.2.0

cpe:2.3:a:xfce:thunar:1.2.0
Xfce » Thunar » Version: 1.2.1

cpe:2.3:a:xfce:thunar:1.2.1
Xfce » Thunar » Version: 1.2.2

cpe:2.3:a:xfce:thunar:1.2.2
Xfce » Thunar » Version: 1.2.3

cpe:2.3:a:xfce:thunar:1.2.3
Xfce » Thunar » Version: 1.3.0

cpe:2.3:a:xfce:thunar:1.3.0
Xfce » Thunar » Version: 1.3.1

cpe:2.3:a:xfce:thunar:1.3.1
Xfce » Thunar » Version: 1.3.2

cpe:2.3:a:xfce:thunar:1.3.2
Xfce » Thunar » Version: 1.4.0

cpe:2.3:a:xfce:thunar:1.4.0
Xfce » Thunar » Version: 1.5.0

cpe:2.3:a:xfce:thunar:1.5.0
Xfce » Thunar » Version: 1.5.1

cpe:2.3:a:xfce:thunar:1.5.1
Xfce » Thunar » Version: 1.5.2

cpe:2.3:a:xfce:thunar:1.5.2
Xfce » Thunar » Version: 1.5.3

cpe:2.3:a:xfce:thunar:1.5.3
Xfce » Thunar » Version: 1.6.0

cpe:2.3:a:xfce:thunar:1.6.0
Xfce » Thunar » Version: 1.6.1

cpe:2.3:a:xfce:thunar:1.6.1
Xfce » Thunar » Version: 1.6.10

cpe:2.3:a:xfce:thunar:1.6.10
Xfce » Thunar » Version: 1.6.11

cpe:2.3:a:xfce:thunar:1.6.11
Xfce » Thunar » Version: 1.6.12

cpe:2.3:a:xfce:thunar:1.6.12
Xfce » Thunar » Version: 1.6.13

cpe:2.3:a:xfce:thunar:1.6.13
Xfce » Thunar » Version: 1.6.14

cpe:2.3:a:xfce:thunar:1.6.14
Xfce » Thunar » Version: 1.6.2

cpe:2.3:a:xfce:thunar:1.6.2
Xfce » Thunar » Version: 1.6.3

cpe:2.3:a:xfce:thunar:1.6.3
Xfce » Thunar » Version: 1.6.4

cpe:2.3:a:xfce:thunar:1.6.4
Xfce » Thunar » Version: 1.6.5

cpe:2.3:a:xfce:thunar:1.6.5
Xfce » Thunar » Version: 1.6.6

cpe:2.3:a:xfce:thunar:1.6.6
Xfce » Thunar » Version: 1.6.7

cpe:2.3:a:xfce:thunar:1.6.7
Xfce » Thunar » Version: 1.6.8

cpe:2.3:a:xfce:thunar:1.6.8
Xfce » Thunar » Version: 1.6.9

cpe:2.3:a:xfce:thunar:1.6.9
Xfce » Xfce » Version: 4.4.0

cpe:2.3:a:xfce:xfce:4.4.0
Xfce » Xfce » Version: 4.4.1

cpe:2.3:a:xfce:xfce:4.4.1
Xfce » Xfce » Version: 4.4.2

cpe:2.3:a:xfce:xfce:4.4.2
Xfce » Xfce » Version: 4.4.3

cpe:2.3:a:xfce:xfce:4.4.3
Xfce » Xfce » Version: 4.6.0

cpe:2.3:a:xfce:xfce:4.6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-18398

Products

Pricing

Contact Us