Lucene search
Veracode Vulnerability DatabaseVERACODE:28468HistoryDec 06, 2020 - 4:44 a.m.
Improper Input Validation
2020-12-0604:44:23
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.006 Low
EPSS
Percentile
79.0%
chromium is vulnerable to improper input validation. The vulnerability exists due to lack of validation of ancestor frames site when sending lax cookies in navigation in Google Chrome, allowing a malicious user to bypass SameSite cookie policy via a crafted HTML page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| chromium:stretch | eq | 70.0.3538.110-1~deb9u1 | |
| chromium:stretch | eq | 70.0.3538.110-1~deb9u1 |
Related
prion
prion
Design/Logic Flaw
2018-12-11 16:29:00
redhatcve
redhatcve
CVE-2018-18351
2018-12-05 18:52:07
nvd
nvd
CVE-2018-18351
2018-12-11 16:29:01
cve
cve
CVE-2018-18351
2018-12-11 16:29:01
cvelist
cvelist
CVE-2018-18351
2018-12-11 15:00:00
ubuntucve
ubuntucve
CVE-2018-18351
2018-12-11 00:00:00
debiancve
debiancve
CVE-2018-18351
2018-12-11 16:29:01
suse
suse
Security update for Chromium (important)
2018-12-15 15:08:49
Security update for Chromium (important)
2018-12-15 15:09:21
Security update for Chromium (important)
2018-12-08 15:14:53
nessus
nessus
openSUSE Security Update : Chromium (openSUSE-2018-1557)
2018-12-17 00:00:00
RHEL 6 : chromium-browser (RHSA-2018:3803)
2018-12-11 00:00:00
Fedora 28 : chromium (2019-348547a32d)
2019-01-16 00:00:00
openvas
openvas
openSUSE: Security Advisory for Chromium (openSUSE-SU-2018:4142-1)
2018-12-18 00:00:00
Fedora Update for chromium FEDORA-2019-348547a32d
2019-01-16 00:00:00
openSUSE: Security Advisory for Chromium (openSUSE-SU-2018:4056-1)
2018-12-10 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2018-12-04 00:00:00
archlinux
archlinux
[ASA-201812-2] chromium: multiple issues
2018-12-08 00:00:00
kaspersky
kaspersky
KLA11379 Multiple vulnerabilities in Google Chrome
2018-12-04 00:00:00
KLA11734 Multiple vulnerabilities in Opera
2018-12-12 00:00:00
debian
debian
[SECURITY] [DSA 4352-1] chromium-browser security update
2018-12-08 01:45:46
[SECURITY] [DSA 4352-1] chromium-browser security update
2018-12-08 01:45:46
fedora
fedora
[SECURITY] Fedora 29 Update: chromium-71.0.3578.98-1.fc29
2019-01-05 02:32:22
[SECURITY] Fedora 28 Update: chromium-71.0.3578.98-1.fc28
2019-01-16 01:43:05
redhat
redhat
(RHSA-2018:3803) Important: chromium-browser security update
2018-12-10 10:22:08
chrome
chrome
Stable Channel Update for Desktop
2018-12-04 00:00:00
osv
osv
chromium-browser - security update
2018-12-07 00:00:00
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2019-08-15 00:00:00