High severity7.3NVD Advisory· Published Oct 4, 2018· Updated Jun 17, 2026
CVE-2018-12472
CVE-2018-12472
Description
A improper authentication using the HOST header in SUSE Linux SMT allows remote attackers to spoof a sibling server. Affected releases are SUSE Linux SMT: versions prior to 3.0.37.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
16- Range: <3.0.37
- osv-coords14 versionspkg:rpm/suse/perl-File-Touch&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012pkg:rpm/suse/smt&distro=Subscription%20Management%20Tool%2011%20SP3pkg:rpm/suse/smt&distro=SUSE%20Enterprise%20Storage%204pkg:rpm/suse/smt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012pkg:rpm/suse/smt&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/smt&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/smt&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSSpkg:rpm/suse/smt&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/smt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/smt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/smt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/smt&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/yast2-smt&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/yast2-smt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
< 0.11-3.2.2+ 13 more
- (no CPE)range: < 0.11-3.2.2
- (no CPE)range: < 2.0.34-50.8.1
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.37-52.23.6
- (no CPE)range: < 3.0.14-10.6.2
- (no CPE)range: < 3.0.14-10.6.2
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.