VYPR
Medium severity4.3NVD Advisory· Published Jan 9, 2019· Updated Jun 17, 2026

CVE-2018-20067

CVE-2018-20067

Description

A renderer initiated back navigation was incorrectly allowed to cancel a browser initiated one in Navigation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to confuse the user about the origin of the current page via a crafted HTML page.

Affected products

2
  • Google/Chromellm-fuzzy2 versions
    <71.0.3578.80+ 1 more
    • (no CPE)range: <71.0.3578.80
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.