CVE-2018-5130

Summary

When packets with a mismatched RTP payload type are sent in WebRTC connections, in some circumstances a potentially exploitable crash is triggered. This vulnerability affects Firefox ESR < 52.7 and Firefox < 59.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefox ESRunspecified < 52.7affected
MozillaFirefoxunspecified < 59affected

Weaknesses

  • Mismatched RTP payload type can trigger memory corruption

ADP Enrichment

CVE Program Container

Additional References

References