Incorrect URL parsing in WebKit in Google Chrome on iOS before 67.0.3396.62 allowed a remote malicious user to perform domain spoofing via a crafted HTML page.
google chrome