vulnerability

Google Chrome Vulnerability: CVE-2018-6151 Bad cast in DevTools

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Jan 9, 2019	Jan 29, 2019	Mar 30, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Jan 9, 2019

Added

Jan 29, 2019

Modified

Mar 30, 2026

Description

Bad cast in DevTools in Google Chrome on Win, Linux, Mac, Chrome OS prior to 66.0.3359.117 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted Chrome Extension.

Solution

google-chrome-upgrade-latest

References

CVE-2018-6151
https://attackerkb.com/topics/CVE-2018-6151
CWE-125
EUVD-EUVD-2018-17914
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-17914

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report