Incorrect handling of specified filenames in file downloads in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page and user interaction.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
No history.
Information
Published : 2018-11-14 15:29
Updated : 2024-02-04 20:03
NVD link : CVE-2018-6075
Mitre link : CVE-2018-6075
CVE.ORG link : CVE-2018-6075
JSON object : View
Products Affected
debian
- debian_linux
redhat
- linux_server
- linux_workstation
- linux_desktop
- chrome
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor