CVE-2018-6040

Опубликовано: 24 янв. 2018

Источник: redhat

CVSS3: 6.5

EPSS Низкий

Описание

Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially bypass content security policy via a crafted HTML page.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1538512chromium-browser: content security policy bypass

EPSS

Процентиль: 69%

0.00606

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-6040

CVSS3: 6.5

ubuntu

больше 7 лет назад

Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially bypass content security policy via a crafted HTML page.

CVE-2018-6040

CVSS3: 6.5

nvd

больше 7 лет назад

Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially bypass content security policy via a crafted HTML page.

CVE-2018-6040

CVSS3: 6.5

debian

больше 7 лет назад

Insufficient policy enforcement in Blink in Google Chrome prior to 64. ...

GHSA-qhhh-p7xf-qmpx

CVSS3: 6.5

github

больше 3 лет назад

Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially bypass content security policy via a crafted HTML page.

openSUSE-SU-2018:0259-1

suse-cvrf

около 8 лет назад

Security update for chromium

EPSS

Процентиль: 69%

0.00606

Низкий

6.5 Medium

CVSS3