CVE-2018-5280 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2018-5280 Interim 1 4 2022-10-06T00:47:37Z current 2021-09-30T00:53:57Z 2022-10-06T00:47:37Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2018-5280 SonicWall SonicOS on Network Security Appliance (NSA) 2016 Q4 devices has XSS via the Configure SSO screens. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed libfpm_pb0-1.2.4-2.14 libospf0-1.2.4-2.14 libospfapiclient0-1.2.4-2.14 libquagga_pb0-1.2.4-2.14 libzebra1-1.2.4-2.14 quagga-1.2.4-2.14 quagga-devel-1.2.4-2.14 libfpm_pb0-1.2.4-2.14 as a component of openSUSE Tumbleweed libospf0-1.2.4-2.14 as a component of openSUSE Tumbleweed libospfapiclient0-1.2.4-2.14 as a component of openSUSE Tumbleweed libquagga_pb0-1.2.4-2.14 as a component of openSUSE Tumbleweed libzebra1-1.2.4-2.14 as a component of openSUSE Tumbleweed quagga-1.2.4-2.14 as a component of openSUSE Tumbleweed quagga-devel-1.2.4-2.14 as a component of openSUSE Tumbleweed SonicWall SonicOS on Network Security Appliance (NSA) 2016 Q4 devices has XSS via the Configure SSO screens. CVE-2018-5280 openSUSE Tumbleweed:libfpm_pb0-1.2.4-2.14 openSUSE Tumbleweed:libospf0-1.2.4-2.14 openSUSE Tumbleweed:libospfapiclient0-1.2.4-2.14 openSUSE Tumbleweed:libquagga_pb0-1.2.4-2.14 openSUSE Tumbleweed:libzebra1-1.2.4-2.14 openSUSE Tumbleweed:quagga-1.2.4-2.14 openSUSE Tumbleweed:quagga-devel-1.2.4-2.14 low 3.5 AV:N/AC:M/Au:S/C:N/I:P/A:N 5.4 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N