Vulnerability Description
The implementation of the Page.downloadBehavior backend unconditionally marked downloaded files as safe, regardless of file type in Google Chrome prior to 66.0.3359.117 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted HTML page and user interaction.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chrome | < 66.0.3359.106 | |
| Redhat | Enterprise Linux Desktop | 6.0 |
| Redhat | Enterprise Linux Server | 6.0 |
| Redhat | Enterprise Linux Workstation | 6.0 |
| Debian | Debian Linux | 9.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/104887
- https://access.redhat.com/errata/RHSA-2018:2282
- https://chromereleases.googleblog.com/2018/04/stable-channel-update-for-desktop.
- https://crbug.com/805445
- https://security.gentoo.org/glsa/201808-01
- https://www.debian.org/security/2018/dsa-4256
- http://www.securityfocus.com/bid/104887
- https://access.redhat.com/errata/RHSA-2018:2282
- https://chromereleases.googleblog.com/2018/04/stable-channel-update-for-desktop.
- https://crbug.com/805445
- https://security.gentoo.org/glsa/201808-01
- https://www.debian.org/security/2018/dsa-4256
FAQ
What is CVE-2018-6152?
CVE-2018-6152 is a vulnerability with a CVSS score of 9.6 (CRITICAL). The implementation of the Page.downloadBehavior backend unconditionally marked downloaded files as safe, regardless of file type in Google Chrome prior to 66.0.3359.117 allowed an attacker who convinc...
How severe is CVE-2018-6152?
CVE-2018-6152 has been rated CRITICAL with a CVSS base score of 9.6/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2018-6152?
Check the references section above for vendor advisories and patch information. Affected products include: Google Chrome, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Server, Redhat Enterprise Linux Workstation, Debian Debian Linux.