Published: 14/11/2018 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Object lifecycle issue in Chrome Custom Tab in Google Chrome before 65.0.3325.146 allowed a remote malicious user to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
redhat linux desktop 6.0
redhat linux workstation 6.0
redhat linux server 6.0
debian debian linux 9.0

Several vulnerabilities have been discovered in the chromium web browser CVE-2018-6056 lokihardt discovered an error in the v8 javascript library CVE-2018-6057 Gal Beniamini discovered errors related to shared memory permissions CVE-2018-6060 Omair discovered a use-after-free issue in blink/webkit CVE-2018-6061 Guang Gong disco ...

Object lifecycle issue in Chrome Custom Tab in Google Chrome prior to 6503325146 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page ...

CWE-20 https://chromereleases.googleblog.com/2018/03/stable-channel-update-for-desktop.html http://www.securityfocus.com/bid/103297 https://crbug.com/798933 https://www.debian.org/security/2018/dsa-4182 https://nvd.nist.gov https://www.debian.org/security/./dsa-4182

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-6068

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect