CVE-2018-18494
CVE Information
CVE ID
CVE-2018-18494
Severity
MEDIUM
CVSS 6.5
Publish Date
2019-02-28
Description
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64.
Collection Date
2026-01-13
Impact Summary
Affected Hosts
1
Related Incidents
0
Related Alerts
0
Affected Hosts (1)
| Hostname | OS Type | Severity | Total CVEs |
|---|---|---|---|
| inbridge-ubt-24 | LINUX | CRITICAL | 2364 |