vulnerability
Red Hat: CVE-2018-18349: Important: chromium-browser security update (RHSA-2018:3803)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:P/I:N/A:N) | Dec 10, 2018 | Dec 11, 2018 | Nov 8, 2023 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
Dec 10, 2018
Added
Dec 11, 2018
Modified
Nov 8, 2023
Description
Remote frame navigations was incorrectly permitted to local resources in Blink in Google Chrome prior to 71.0.3578.80 allowed an attacker who convinced a user to install a malicious extension to access files on the local file system via a crafted Chrome Extension.
Solutions
redhat-upgrade-chromium-browserredhat-upgrade-chromium-browser-debuginfo
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.