vulnerability

Google Chrome Vulnerability: CVE-2018-6083 Incorrect processing of AppManifests

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Nov 14, 2018	Dec 31, 2018	Nov 8, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Nov 14, 2018

Added

Dec 31, 2018

Modified

Nov 8, 2023

Description

Failure to disallow PWA installation from CSP sandboxed pages in AppManifest in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to access privileged APIs via a crafted HTML page.

Solution

google-chrome-upgrade-latest

References

CVE-2018-6083
https://attackerkb.com/topics/CVE-2018-6083

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today