Oval Definition:	oval:org.opensuse.security:def:201812370
Revision Date: 2022-06-30 Version: 1 Title: CVE-2018-12370 Description: In Reader View SameSite cookie protections are not checked on exiting. This allows for a payload to be triggered when Reader View is exited if loaded by a malicious site while Reader mode is active, bypassing CSRF protections. This vulnerability affects Firefox < 61. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2018-12370 SUSE CVE-2018-12370 Platform(s): openSUSE Tumbleweed SUSE CaaS Platform 4.0 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0 Product(s): Definition Synopsis openSUSE Tumbleweed is installed AND Package Information MozillaFirefox-92.0-1.2 is installed OR MozillaFirefox-branding-upstream-92.0-1.2 is installed OR MozillaFirefox-devel-92.0-1.2 is installed OR MozillaFirefox-translations-common-92.0-1.2 is installed OR MozillaFirefox-translations-other-92.0-1.2 is installed Definition Synopsis Release Information SUSE CaaS Platform 4.0 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed AND Package Information MozillaFirefox is affected OR MozillaFirefox-devel is affected OR MozillaFirefox-translations-common is affected OR MozillaFirefox-translations-other is affected Definition Synopsis Release Information SUSE Manager Proxy 4.0 is installed OR SUSE Manager Retail Branch Server 4.0 is installed OR SUSE Manager Server 4.0 is installed AND MozillaFirefox is affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed AND MozillaFirefox is affected OR MozillaFirefox-devel is affected OR MozillaFirefox-translations-common is affected OR MozillaFirefox-translations-other is affected
BACK