Insufficient data validation in filesystem URIs in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.
References
Configurations
History
21 Nov 2024, 03:54
Type | Values Removed | Values Added |
---|---|---|
References | () https://chromereleases.googleblog.com/2018/07/stable-channel-update-for-desktop.html - | |
References | () https://crbug.com/696446 - |
07 Nov 2023, 02:54
Type | Values Removed | Values Added |
---|---|---|
References | () https://chromereleases.googleblog.com/2018/07/stable-channel-update-for-desktop.html - | |
References | () https://crbug.com/696446 - |
Information
Published : 2019-06-27 17:15
Updated : 2024-11-21 03:54
NVD link : CVE-2018-17460
Mitre link : CVE-2018-17460
CVE.ORG link : CVE-2018-17460
JSON object : View
Products Affected
- chrome
CWE
CWE-20
Improper Input Validation