VYPR
High severity8.8NVD Advisory· Published Jan 9, 2019· Updated Jun 17, 2026

CVE-2018-20065

CVE-2018-20065

Description

Handling of URI action in PDFium in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to initiate potentially unsafe navigations without a user gesture via a crafted PDF file.

Affected products

2
  • Google/Chromellm-fuzzy2 versions
    <71.0.3578.80+ 1 more
    • (no CPE)range: <71.0.3578.80
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.