CVE-2018-18506

Description

When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded locally, this PAC file can specify that requests to the localhost are to be sent through the proxy to another server. This behavior is disallowed by default when a proxy is manually configured, but when enabled could allow for attacks on services and tools that bind to the localhost for networked behavior if they are accessed through browsing. This vulnerability affects Firefox < 65.

5.9

CVSS

Severity: Medium

CVSS 3.1 •

CVSS 2.0 •

EPSS 1.52% Top 20%

Vendor Advisory ubuntu.com Vendor Advisory redhat.com Vendor Advisory redhat.com Vendor Advisory debian.org Vendor Advisory opensuse.org Vendor Advisory redhat.com Vendor Advisory redhat.com Vendor Advisory ubuntu.com Vendor Advisory opensuse.org Vendor Advisory debian.org Vendor Advisory gentoo.org Vendor Advisory opensuse.org Vendor Advisory opensuse.org Vendor Advisory redhat.com Vendor Advisory redhat.com Vendor Advisory mozilla.org

Affected: Mozilla Firefox

References

Link	Tags
https://www.mozilla.org/security/advisories/mfsa2019-01/	vendor advisory
http://www.securityfocus.com/bid/106773	vdb entry third party advisory broken link
https://usn.ubuntu.com/3874-1/	third party advisory vendor advisory
https://access.redhat.com/errata/RHSA-2019:0623	third party advisory vendor advisory
https://access.redhat.com/errata/RHSA-2019:0622	third party advisory vendor advisory
https://seclists.org/bugtraq/2019/Mar/28	third party advisory mailing list
https://www.debian.org/security/2019/dsa-4411	third party advisory vendor advisory
https://lists.debian.org/debian-lts-announce/2019/03/msg00024.html	third party advisory mailing list
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00035.html	mailing list broken link third party advisory vendor advisory
https://access.redhat.com/errata/RHSA-2019:0680	third party advisory vendor advisory
https://access.redhat.com/errata/RHSA-2019:0681	third party advisory vendor advisory
https://usn.ubuntu.com/3927-1/	third party advisory vendor advisory
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00043.html	mailing list third party advisory vendor advisory
https://www.debian.org/security/2019/dsa-4420	third party advisory vendor advisory
https://seclists.org/bugtraq/2019/Apr/0	third party advisory mailing list
https://lists.debian.org/debian-lts-announce/2019/04/msg00000.html	third party advisory mailing list
https://security.gentoo.org/glsa/201904-07	third party advisory vendor advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00023.html	mailing list third party advisory vendor advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html	mailing list third party advisory vendor advisory
https://access.redhat.com/errata/RHSA-2019:0966	third party advisory vendor advisory
https://access.redhat.com/errata/RHSA-2019:1144	third party advisory vendor advisory

Frequently Asked Questions

What is the severity of CVE-2018-18506?: CVE-2018-18506 has been scored as a medium severity vulnerability.
How to fix CVE-2018-18506?: To fix CVE-2018-18506, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2018-18506 being actively exploited in the wild?: It is possible that CVE-2018-18506 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~2% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2018-18506?: CVE-2018-18506 affects Mozilla Firefox.