Lucene search
MozillaCVELIST:CVE-2018-12370HistoryOct 18, 2018 - 1:00 p.m.
CVE-2018-12370
2018-10-1813:00:00
mozilla
www.cve.org
In Reader View SameSite cookie protections are not checked on exiting. This allows for a payload to be triggered when Reader View is exited if loaded by a malicious site while Reader mode is active, bypassing CSRF protections. This vulnerability affects Firefox < 61.
CNA Affected
[
{
"product": "Firefox",
"vendor": "Mozilla",
"versions": [
{
"lessThan": "61",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2018-12370
2018-10-18 13:29:03
ubuntucve
ubuntucve
CVE-2018-12370
2018-06-27 00:00:00
debiancve
debiancve
CVE-2018-12370
2018-10-18 13:29:03
prion
prion
Cross site request forgery (csrf)
2018-10-18 13:29:00
cve
cve
CVE-2018-12370
2018-10-18 13:29:03
redhatcve
redhatcve
CVE-2018-12370
2018-06-27 01:23:58
openvas
openvas
Mozilla Firefox Security Advisories (MFSA2018-15, MFSA2018-17) - Mac OS X
2018-06-27 00:00:00
Ubuntu: Security Advisory (USN-3705-1)
2018-07-06 00:00:00
Ubuntu: Security Advisory (USN-3705-2)
2018-07-11 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2018-07-05 00:00:00
Firefox regressions
2018-07-10 00:00:00
nessus
nessus
freebsd
freebsd
mozilla -- multiple vulnerabilities
2018-06-26 00:00:00
archlinux
archlinux
[ASA-201806-14] firefox: multiple issues
2018-06-27 00:00:00
kaspersky
kaspersky
KLA11271 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR
2018-06-26 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Firefox 61 — Mozilla
2018-06-26 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2018-10-02 00:00:00