Incorrect handling of blob URLS in Site Isolation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker who had compromised the renderer process to bypass site isolation protections via a crafted HTML page.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2018-12-11T15:00:00

Updated: 2024-08-05T11:08:21.446Z

Reserved: 2018-10-15T00:00:00

Link: CVE-2018-18345

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-12-11T16:29:01.327

Modified: 2024-11-21T03:55:45.487

Link: CVE-2018-18345

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-12-04T00:00:00Z

Links: CVE-2018-18345 - Bugzilla