VYPR
Medium severity6.5NVD Advisory· Published Jan 9, 2019· Updated Jun 17, 2026

CVE-2018-20070

CVE-2018-20070

Description

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.

Affected products

2
  • Google/Chromellm-fuzzy2 versions
    <71.0.3578.80+ 1 more
    • (no CPE)range: <71.0.3578.80
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.