CVE-2018-6076

Опубликовано: 06 мар. 2018

Источник: redhat

CVSS3: 6.5

Описание

Insufficient encoding of URL fragment identifiers in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform a DOM based XSS attack via a crafted HTML page.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1552493chromium-browser: incorrect handling of url fragment identifiers in blink

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-6076

CVSS3: 6.1

ubuntu

около 7 лет назад

Insufficient encoding of URL fragment identifiers in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform a DOM based XSS attack via a crafted HTML page.

CVE-2018-6076

CVSS3: 6.1

nvd

около 7 лет назад

Insufficient encoding of URL fragment identifiers in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform a DOM based XSS attack via a crafted HTML page.

CVE-2018-6076

CVSS3: 6.1

debian

около 7 лет назад

Insufficient encoding of URL fragment identifiers in Blink in Google C ...

GHSA-h55r-r5c7-q23x

CVSS3: 6.1

github

больше 3 лет назад

Insufficient encoding of URL fragment identifiers in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform a DOM based XSS attack via a crafted HTML page.

openSUSE-SU-2018:0704-1

suse-cvrf

почти 8 лет назад

Security update for Chromium

6.5 Medium

CVSS3