CVE-2018-6137

Published: Jan 9, 2019
Updated: Nov 8, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-6137" target="_blank" rel="noopener"> CVE-2018-6137
Severity: Medium
Exploit:

CSS Paint API in Blink in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
google / chrome	-	67.0.3396.62
debian / debian_linux	9.0	9.0.x
redhat / enterprise_linux_desktop	6.0	6.0.x
redhat / enterprise_linux_server	6.0	6.0.x
redhat / enterprise_linux_workstation	6.0	6.0.x

Vulnerability Database