Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-6171

Опубликовано: 27 июн. 2019
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 2.9
CVSS3: 5.7

Описание

Use after free in Bluetooth in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension.

РелизСтатусПримечание
bionic

released

68.0.3440.75-0ubuntu0.18.04.1
cosmic

released

68.0.3440.75-0ubuntu1
devel

released

68.0.3440.75-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [no longer updated]]
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [no longer updated]
upstream

released

68.0.3440.75
xenial

released

68.0.3440.75-0ubuntu0.16.04.1

Показывать по

РелизСтатусПримечание
bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [Ubuntu touch end-of-life]]
esm-infra/xenial

ignored

Ubuntu touch end-of-life
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [Ubuntu touch end-of-life]
upstream

needs-triage

xenial

ignored

end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 14%
0.00046
Низкий

2.9 Low

CVSS2

5.7 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2018-6171

CVSS3: 6.5
redhat
больше 7 лет назад

Use after free in Bluetooth in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension.

nvd логотип

CVE-2018-6171

CVSS3: 5.7
nvd
больше 6 лет назад

Use after free in Bluetooth in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension.

debian логотип

CVE-2018-6171

CVSS3: 5.7
debian
больше 6 лет назад

Use after free in Bluetooth in Google Chrome prior to 68.0.3440.75 all ...

github логотип

GHSA-x6cw-4j84-hpjf

CVSS3: 5.7
github
больше 3 лет назад

Use after free in Bluetooth in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension.

fstec логотип

BDU:2019-04461

CVSS3: 5.7
fstec
больше 7 лет назад

Уязвимость компонента WebBluetooth браузера Google Chrome, позволяющая нарушителю инициировать установку вредоносного расширения Chrome и получить несанкционированный доступ к защищаемой информации

EPSS

Процентиль: 14%
0.00046
Низкий

2.9 Low

CVSS2

5.7 Medium

CVSS3

Уязвимость CVE-2018-6171