CVE-2018-17460

Summary

Insufficient data validation in filesystem URIs in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.

Affected Software

VendorProductVersion RangeStatus
GoogleChromeunspecified < 68.0.3440.75affected

Weaknesses

  • Incorrect security UI

ADP Enrichment

CVE Program Container

Additional References

References