CVE-2018-5119

Summary

The reader view will display cross-origin content when CORS headers are set to prohibit the loading of cross-origin content by a site. This could allow access to content that should be restricted in reader view. This vulnerability affects Firefox < 58.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 58affected

Weaknesses

  • Reader view will load cross-origin content in violation of CORS headers

ADP Enrichment

CVE Program Container

Additional References

References