CVE-2018-18358

MEDIUM5.7EPSS 0.11%

發布日:2018/12/11修改日:2026/4/28

也稱為:DEBIAN-CVE-2018-18358

描述

Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file.

受影響套件(1)

Debian/chromiumfrom 0, < 71.0.3578.80-1

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	MEDIUM5.7	CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2018-18358