296,213
Total vulnerabilities in the database
Incorrect enforcement of CSP for <object> tags in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to bypass content security policy via a crafted HTML page.
| Software | From | Fixed in |
|---|---|---|
| google / chrome | - | 66.0.3359.117 |
| debian / debian_linux | 9.0 | 9.0.x |
| redhat / enterprise_linux_desktop | 6.0 | 6.0.x |
| redhat / enterprise_linux_server | 6.0 | 6.0.x |
| redhat / enterprise_linux_workstation | 6.0 | 6.0.x |