Published: 09/01/2019 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Off-by-one error in PDFium in Google Chrome before 67.0.3396.62 allowed a remote malicious user to perform an out of bounds memory write via a crafted PDF file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
debian debian linux 9.0
redhat enterprise linux desktop 6.0
redhat enterprise linux server 6.0
redhat enterprise linux workstation 6.0

Synopsis Important: chromium-browser security update Type/Severity Security Advisory: Important Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...

Several vulnerabilities have been discovered in the chromium web browser CVE-2018-6118 Ned Williamson discovered a use-after-free issue CVE-2018-6120 Zhou Aiting discovered a buffer overflow issue in the pdfium library CVE-2018-6121 It was discovered that malicious extensions could escalate privileges CVE-2018-6122 A type confu ...

Off-by-one error in PDFium in Google Chrome prior to 670339662 allowed a remote attacker to perform an out of bounds memory write via a crafted PDF file ...

CWE-787 https://crbug.com/828049 http://www.securityfocus.com/bid/104309 https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop_58.html http://www.securitytracker.com/id/1041014 https://access.redhat.com/errata/RHSA-2018:1815 https://www.debian.org/security/2018/dsa-4237 https://access.redhat.com/errata/RHSA-2018:1815 https://nvd.nist.gov https://www.debian.org/security/./dsa-4237

CVE-2018-6144

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect