XSS vulnerabilities in Interstitials in Google Chrome prior to 65.0.3325.146 allowed an attacker who convinced a user to install a malicious extension or open Developer Console to inject arbitrary scripts or HTML via a crafted HTML page.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
No history.
Information
Published : 2018-11-14 15:29
Updated : 2024-02-04 20:03
NVD link : CVE-2018-6081
Mitre link : CVE-2018-6081
CVE.ORG link : CVE-2018-6081
JSON object : View
Products Affected
redhat
- linux_server
- linux_desktop
- linux_workstation
- chrome
debian
- debian_linux
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')