CVE-2018-6055

Опубликовано: 25 сент. 2018

Источник: debian

EPSS Низкий

Описание

Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium-browser	fixed	64.0.3282.119-1		package
chromium-browser	end-of-life		jessie	package

EPSS

Процентиль: 68%

0.00564

Низкий

Связанные уязвимости

CVE-2018-6055

CVSS3: 8.8

ubuntu

больше 7 лет назад

Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page.

CVE-2018-6055

CVSS3: 7.5

redhat

больше 7 лет назад

Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page.

CVE-2018-6055

CVSS3: 8.8

nvd

больше 7 лет назад

Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page.

GHSA-m6qv-gwg5-63c6

CVSS3: 8.8

github

больше 3 лет назад

Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page.

BDU:2018-01520

CVSS3: 8.8

fstec

около 8 лет назад

Уязвимость компонента Catalog Service браузера Google Chrome, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 68%

0.00564

Низкий