Lucene search

Veracode Vulnerability DatabaseVERACODE:28465

HistoryDec 06, 2020 - 4:44 a.m.

Content Spoofing

2020-12-0604:44:16

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.011 Low

EPSS

Percentile

84.4%

JSON

Google Chrome is vulnerable to content spoofing. A remote attacker could spoof the contents of the URL bar via a crafted domain name due to incorrect handling of confusable characters in URL Formatter.

CPENameOperatorVersion
chromium:stretcheq70.0.3538.110-1~deb9u1
chromium:stretcheq70.0.3538.110-1~deb9u1

CPE	Name	Operator	Version
	chromium:stretch	eq	70.0.3538.110-1~deb9u1
	chromium:stretch	eq	70.0.3538.110-1~deb9u1

References

www.securityfocus.com/bid/106084

access.redhat.com/errata/RHSA-2018:3803

chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html

crbug.com/896717

security-tracker.debian.org/tracker/CVE-2018-18355

security.gentoo.org/glsa/201908-18

www.debian.org/security/2018/dsa-4352

0.011 Low

EPSS

Percentile

84.4%

JSON

Related for VERACODE:28465