CVE-2018-18506

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded locally, this PAC file can specify that requests to the localhost are to be sent through the proxy to another server. This behavior is disallowed by default when a proxy is manually configured, but when enabled could allow for attacks on services and tools that bind to the localhost for networked behavior if they are accessed through browsing. This vulnerability affects Firefox < 65.

References

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00035.html

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00043.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00023.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html

http://www.securityfocus.com/bid/106773

https://access.redhat.com/errata/RHSA-2019:0622

https://access.redhat.com/errata/RHSA-2019:0623

https://access.redhat.com/errata/RHSA-2019:0680

https://access.redhat.com/errata/RHSA-2019:0681

https://access.redhat.com/errata/RHSA-2019:0966

https://access.redhat.com/errata/RHSA-2019:1144

https://lists.debian.org/debian-lts-announce/2019/03/msg00024.html

https://lists.debian.org/debian-lts-announce/2019/04/msg00000.html

https://seclists.org/bugtraq/2019/Apr/0

https://seclists.org/bugtraq/2019/Mar/28

https://security.gentoo.org/glsa/201904-07

https://usn.ubuntu.com/3874-1/

https://usn.ubuntu.com/3927-1/

https://www.debian.org/security/2019/dsa-4411

https://www.debian.org/security/2019/dsa-4420

https://www.mozilla.org/security/advisories/mfsa2019-01/

Details

Source: MITRE

Published: 2019-02-05

Updated: 2020-08-24

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Impact Score: 3.6

Exploitability Score: 2.2

Severity: MEDIUM

Tenable Plugins

View all (49 total)

IDNameProductFamilySeverity
145595CentOS 8 : firefox (CESA-2019:0966)NessusCentOS Local Security Checks
critical
127579Oracle Linux 8 : thunderbird (ELSA-2019-1144)NessusOracle Linux Local Security Checks
critical
127459NewStart CGSL MAIN 4.05 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0169)NessusNewStart CGSL Local Security Checks
critical
127427NewStart CGSL MAIN 4.05 : firefox Multiple Vulnerabilities (NS-SA-2019-0153)NessusNewStart CGSL Local Security Checks
critical
127319NewStart CGSL MAIN 4.06 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0095)NessusNewStart CGSL Local Security Checks
critical
127308NewStart CGSL MAIN 4.06 : firefox Multiple Vulnerabilities (NS-SA-2019-0090)NessusNewStart CGSL Local Security Checks
critical
127260NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2019-0064)NessusNewStart CGSL Local Security Checks
critical
127257NewStart CGSL CORE 5.04 / MAIN 5.04 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0062)NessusNewStart CGSL Local Security Checks
critical
125498EulerOS 2.0 SP3 : firefox (EulerOS-SA-2019-1571)NessusHuawei Local Security Checks
critical
124845RHEL 8 : thunderbird (RHSA-2019:1144)NessusRed Hat Local Security Checks
critical
124662RHEL 8 : firefox (RHSA-2019:0966)NessusRed Hat Local Security Checks
critical
124378EulerOS 2.0 SP2 : firefox (EulerOS-SA-2019-1282)NessusHuawei Local Security Checks
critical
124301Amazon Linux 2 : thunderbird (ALAS-2019-1195)NessusAmazon Linux Local Security Checks
critical
123817openSUSE Security Update : MozillaThunderbird (openSUSE-2019-1162)NessusSuSE Local Security Checks
critical
123781SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2019:0871-1)NessusSuSE Local Security Checks
critical
123747SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2019:0852-1)NessusSuSE Local Security Checks
critical
123581GLSA-201904-07 : Mozilla Thunderbird and Firefox: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
123563Debian DLA-1743-1 : thunderbird security updateNessusDebian Local Security Checks
critical
123562CentOS 7 : thunderbird (CESA-2019:0681)NessusCentOS Local Security Checks
critical
123561CentOS 6 : thunderbird (CESA-2019:0680)NessusCentOS Local Security Checks
critical
123541openSUSE Security Update : MozillaFirefox (openSUSE-2019-1077)NessusSuSE Local Security Checks
critical
123532Debian DSA-4420-1 : thunderbird - security updateNessusDebian Local Security Checks
critical
123507Mozilla Thunderbird < 60.6NessusWindows
critical
123506Mozilla Thunderbird < 60.6NessusMacOS X Local Security Checks
critical
123505Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 18.10 : Thunderbird vulnerabilities (USN-3927-1)NessusUbuntu Local Security Checks
critical
123491Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20190328)NessusScientific Linux Local Security Checks
critical
123490Scientific Linux Security Update : thunderbird on SL6.x i386/x86_64 (20190328)NessusScientific Linux Local Security Checks
critical
123488RHEL 7 : thunderbird (RHSA-2019:0681)NessusRed Hat Local Security Checks
critical
123487RHEL 6 : thunderbird (RHSA-2019:0680)NessusRed Hat Local Security Checks
critical
123485Oracle Linux 7 : thunderbird (ELSA-2019-0681)NessusOracle Linux Local Security Checks
critical
123484Oracle Linux 6 : thunderbird (ELSA-2019-0680)NessusOracle Linux Local Security Checks
critical
123438openSUSE Security Update : MozillaFirefox (openSUSE-2019-1056)NessusSuSE Local Security Checks
critical
123057Scientific Linux Security Update : firefox on SL6.x i386/x86_64 (20190320)NessusScientific Linux Local Security Checks
critical
123021Debian DSA-4411-1 : firefox-esr - security updateNessusDebian Local Security Checks
critical
123016Debian DLA-1722-1 : firefox-esr security updateNessusDebian Local Security Checks
critical
123015CentOS 6 : firefox (CESA-2019:0623)NessusCentOS Local Security Checks
critical
123014CentOS 7 : firefox (CESA-2019:0622)NessusCentOS Local Security Checks
critical
122995Scientific Linux Security Update : firefox on SL7.x x86_64 (20190320)NessusScientific Linux Local Security Checks
critical
122994RHEL 6 : firefox (RHSA-2019:0623)NessusRed Hat Local Security Checks
critical
122993RHEL 7 : firefox (RHSA-2019:0622)NessusRed Hat Local Security Checks
critical
122992Oracle Linux 6 : firefox (ELSA-2019-0623)NessusOracle Linux Local Security Checks
critical
122991Oracle Linux 7 : firefox (ELSA-2019-0622)NessusOracle Linux Local Security Checks
critical
122950Mozilla Firefox ESR < 60.6NessusWindows
critical
122949Mozilla Firefox ESR < 60.6NessusMacOS X Local Security Checks
critical
700399Mozilla Firefox < 65.0 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
critical
121512Mozilla Firefox < 65.0NessusWindows
critical
121511Mozilla Firefox < 65.0NessusMacOS X Local Security Checks
critical
121507Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 18.10 : Firefox vulnerabilities (USN-3874-1)NessusUbuntu Local Security Checks
critical
121447FreeBSD : mozilla -- multiple vulnerabilities (b1f7d52f-fc42-48e8-8403-87d4c9d26229)NessusFreeBSD Local Security Checks
critical