vulnerability

Google Chrome Vulnerability: CVE-2018-6178 UI spoof in Extensions

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:P/A:N)	Jan 9, 2019	Jan 18, 2019	Nov 8, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

Jan 9, 2019

Added

Jan 18, 2019

Modified

Nov 8, 2023

Description

Eliding from the wrong side in an infobar in DevTools in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to Hide Chrome Security UI via a crafted Chrome Extension.

Solution

google-chrome-upgrade-latest

References

CVE-2018-6178
https://attackerkb.com/topics/CVE-2018-6178

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today