vulnerability
CentOS Linux: CVE-2018-18349: Important: chromium-browser security update (CESA-2018:3803)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:P/I:N/A:N) | Dec 11, 2018 | Aug 28, 2019 | May 25, 2023 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
Dec 11, 2018
Added
Aug 28, 2019
Modified
May 25, 2023
Description
Remote frame navigations was incorrectly permitted to local resources in Blink in Google Chrome prior to 71.0.3578.80 allowed an attacker who convinced a user to install a malicious extension to access files on the local file system via a crafted Chrome Extension.
Solution(s)
centos-upgrade-chromium-browsercentos-upgrade-chromium-browser-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.