CVE-2018-18344

2018-12-05T19:02:50
ID RH:CVE-2018-18344
Type redhatcve
Reporter redhat.com
Modified 2020-08-18T11:06:01

Description

Inappropriate allowance of the setDownloadBehavior devtools protocol feature in Extensions in Google Chrome prior to 71.0.3578.80 allowed a remote attacker with control of an installed extension to access files on the local file system via a crafted Chrome Extension.