CVE-2018-18506

When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded locally, this PAC file can specify that requests to the localhost are to be sent through the proxy to another server. This behavior is disallowed by default when a proxy is manually configured, but when enabled could allow for attacks on services and tools that bind to the localhost for networked behavior if they are accessed through browsing. This vulnerability affects Firefox < 65.

CVSS v3 5.9 MEDIUM
CVSS v2.0 4.3 MEDIUM

5.9^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00035.html	Broken Link Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00043.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00023.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html	Mailing List Third Party Advisory
http://www.securityfocus.com/bid/106773	Broken Link Third Party Advisory VDB Entry
https://access.redhat.com/errata/RHSA-2019:0622	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0623	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0680	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0681	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0966	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1144	Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/03/msg00024.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/04/msg00000.html	Mailing List Third Party Advisory
https://seclists.org/bugtraq/2019/Apr/0	Mailing List Third Party Advisory
https://seclists.org/bugtraq/2019/Mar/28	Mailing List Third Party Advisory
https://security.gentoo.org/glsa/201904-07	Third Party Advisory
https://usn.ubuntu.com/3874-1/	Third Party Advisory
https://usn.ubuntu.com/3927-1/	Third Party Advisory
https://www.debian.org/security/2019/dsa-4411	Third Party Advisory
https://www.debian.org/security/2019/dsa-4420	Third Party Advisory
https://www.mozilla.org/security/advisories/mfsa2019-01/	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*

Configuration 3 (hide)

OR	cpe:2.3:o:debian:debian_linux:8.0:::::::*
	cpe:2.3:o:debian:debian_linux:9.0:::::::*

Configuration 4 (hide)

OR	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.1:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*

Configuration 5 (hide)

OR	cpe:2.3:o:opensuse:leap:15.0:::::::*
	cpe:2.3:o:opensuse:leap:42.3:::::::*

History

17 Mar 2023, 18:31

Type	Values Removed	Values Added
References	~~(REDHAT) https://access.redhat.com/errata/RHSA-2019:0966 -~~	(REDHAT) https://access.redhat.com/errata/RHSA-2019:0966 - Third Party Advisory
References	~~(BID) http://www.securityfocus.com/bid/106773 - Third Party Advisory, VDB Entry~~	(BID) http://www.securityfocus.com/bid/106773 - Broken Link, Third Party Advisory, VDB Entry
References	~~(BUGTRAQ) https://seclists.org/bugtraq/2019/Apr/0 - Third Party Advisory~~	(BUGTRAQ) https://seclists.org/bugtraq/2019/Apr/0 - Mailing List, Third Party Advisory
References	~~(SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00035.html - Mailing List, Third Party Advisory~~	(SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00035.html - Broken Link, Mailing List, Third Party Advisory
References	~~(SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html -~~	(SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html - Mailing List, Third Party Advisory
References	~~(REDHAT) https://access.redhat.com/errata/RHSA-2019:1144 -~~	(REDHAT) https://access.redhat.com/errata/RHSA-2019:1144 - Third Party Advisory
CPE		cpe:2.3:o:redhat:enterprise_linux_eus:8.1:::::::* cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:::::::* cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:8.2:::::::* cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:8.4:::::::* cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:::::::* cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:8.6:::::::* cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:::::::* cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
First Time		Redhat enterprise Linux Eus Redhat enterprise Linux

Information

Published : 2019-02-05 21:29

Updated : 2023-12-10 12:44

NVD link : CVE-2018-18506

Mitre link : CVE-2018-18506

CVE.ORG link : CVE-2018-18506

JSON object : View

Products Affected

redhat

enterprise_linux_desktop
enterprise_linux_server_eus
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_eus
enterprise_linux_workstation

mozilla

firefox

opensuse

leap

debian

debian_linux

canonical

ubuntu_linux

CWE

NVD-CWE-noinfo

5.9 /10

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

4.3 /10

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

JSON object

Attach tags to CVE-2018-18506

5.9^/10

4.3^/10

Attach tags to `CVE-2018-18506`