CVE-2018-18356

high-risk
Published 2018-12-11

An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Do I need to act?

~
2.6% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (17)

Affected Vendors

Debian Redhat Google Canonical Opensuse

References (36)

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html
http://www.securityfocus.com/bid/106084
https://access.redhat.com/errata/RHSA-2018:3803
https://access.redhat.com/errata/RHSA-2019:0373
https://access.redhat.com/errata/RHSA-2019:0374
https://access.redhat.com/errata/RHSA-2019:1144
https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop....
https://crbug.com/883666
https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html
https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html
https://security.gentoo.org/glsa/201903-04
https://security.gentoo.org/glsa/201904-07
https://security.gentoo.org/glsa/201908-18
https://usn.ubuntu.com/3896-1/
https://usn.ubuntu.com/3897-1/
https://www.debian.org/security/2018/dsa-4352
https://www.debian.org/security/2019/dsa-4391
https://www.debian.org/security/2019/dsa-4392
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html
http://www.securityfocus.com/bid/106084
and 16 more references
55
/ 100
high-risk
Severity 30/34 · Critical
Exploitability 6/34 · Minimal
Exposure 19/34 · Moderate