CVE-2018-6081
Severity CVSS v4.0:
Pending analysis
Type:
CWE-79
Cross-Site Scripting (XSS)
Publication date:
14/11/2018
Last modified:
07/11/2023
Description
XSS vulnerabilities in Interstitials in Google Chrome prior to 65.0.3325.146 allowed an attacker who convinced a user to install a malicious extension or open Developer Console to inject arbitrary scripts or HTML via a crafted HTML page.
Impact
Base Score 3.x
6.10
Severity 3.x
MEDIUM
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* | 65.0.3325.146 (excluding) | |
cpe:2.3:o:redhat:linux_desktop:6.0:*:*:*:*:*:*:* | ||
cpe:2.3:o:redhat:linux_server:6.0:*:*:*:*:*:*:* | ||
cpe:2.3:o:redhat:linux_workstation:6.0:*:*:*:*:*:*:* | ||
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page