5.8 Medium
AI Score
Confidence
High
0.013 Low
EPSS
Percentile
86.1%
Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension.
www.securityfocus.com/bid/102797
www.securitytracker.com/id/1040282
access.redhat.com/errata/RHSA-2018:0265
chromereleases.googleblog.com/2018/01/stable-channel-update-for-desktop_24.html
crbug.com/797497
www.debian.org/security/2018/dsa-4103