CVE-2018-18358

2018-12-11T16:29:00
ID CVE-2018-18358
Type cve
Reporter cve@mitre.org
Modified 2019-08-17T21:15:00

Description

Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file.