CVE-2018-6095

Опубликовано: 17 апр. 2018

Источник: redhat

CVSS3: 6.5

EPSS Низкий

Описание

Inappropriate dismissal of file picker on keyboard events in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to read local files via a crafted HTML page.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1568773chromium-browser: Lack of meaningful user interaction requirement before file upload

EPSS

Процентиль: 76%

0.00936

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-6095

CVSS3: 6.5

ubuntu

около 7 лет назад

Inappropriate dismissal of file picker on keyboard events in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to read local files via a crafted HTML page.

CVE-2018-6095

CVSS3: 6.5

nvd

около 7 лет назад

Inappropriate dismissal of file picker on keyboard events in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to read local files via a crafted HTML page.

CVE-2018-6095

CVSS3: 6.5

debian

около 7 лет назад

Inappropriate dismissal of file picker on keyboard events in Blink in ...

GHSA-3xf8-vx6f-3f9h

CVSS3: 6.5

github

больше 3 лет назад

Inappropriate dismissal of file picker on keyboard events in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to read local files via a crafted HTML page.

openSUSE-SU-2018:1042-1

suse-cvrf

почти 8 лет назад

Security update for chromium

EPSS

Процентиль: 76%

0.00936

Низкий

6.5 Medium

CVSS3