CVE-2018-6148

Опубликовано: 27 июн. 2019

Источник: debian

EPSS Низкий

Описание

Incorrect implementation in Content Security Policy in Google Chrome prior to 67.0.3396.79 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium-browser	fixed	67.0.3396.79-1		package
chromium-browser	end-of-life		jessie	package

EPSS

Процентиль: 26%

0.00094

Низкий

Связанные уязвимости

CVE-2018-6148

CVSS3: 6.5

ubuntu

больше 6 лет назад

Incorrect implementation in Content Security Policy in Google Chrome prior to 67.0.3396.79 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

CVE-2018-6148

CVSS3: 8.8

redhat

больше 7 лет назад

Incorrect implementation in Content Security Policy in Google Chrome prior to 67.0.3396.79 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

CVE-2018-6148

CVSS3: 6.5

nvd

больше 6 лет назад

Incorrect implementation in Content Security Policy in Google Chrome prior to 67.0.3396.79 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

openSUSE-SU-2018:1859-1

suse-cvrf

больше 7 лет назад

Security update for Opera

GHSA-j354-jr4f-q3j5

CVSS3: 6.5

github

больше 3 лет назад

Incorrect implementation in Content Security Policy in Google Chrome prior to 67.0.3396.79 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

EPSS

Процентиль: 26%

0.00094

Низкий