CVE-2018-6137

Summary

CSS Paint API in Blink in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Affected Software

VendorProductVersion RangeStatus
GoogleChromeunspecified < 67.0.3396.62affected

Weaknesses

  • Side-channel information leakage

ADP Enrichment

CVE Program Container

Additional References

References