CVE-2018-6124Incorrect Type Conversion or Cast in Google Chrome

CWE-704Incorrect Type Conversion or Cast8 documents6 sources
Severity
8.8HIGHNVD
EPSS
1.3%
top 20.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Google ChromeDebian LinuxRedhat Enterprise Linux Desktop+2 more
Timeline
PublishedJan 9
Latest updateMay 14

Description

Type confusion in ReadableStreams in Blink in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages5 packages

CVEListV5google/chromeunspecified67.0.3396.62
NVDgoogle/chrome< 67.0.3396.62

Also affects: Debian Linux 9.0

🔴Vulnerability Details

3
GHSA
GHSA-8wr4-xmf3-37g4: Type confusion in ReadableStreams in Blink in Google Chrome prior to 672022-05-14
CVEList
CVE-2018-6124: Type confusion in ReadableStreams in Blink in Google Chrome prior to 672019-01-09
OSV
CVE-2018-6124: Type confusion in ReadableStreams in Blink in Google Chrome prior to 672019-01-09

📋Vendor Advisories

1
Red Hat
chromium-browser: Type confusion in Blink2018-05-29

💬Community

3
Bugzilla
CVE-2018-6123 CVE-2018-6124 CVE-2018-6125 CVE-2018-6126 CVE-2018-6127 CVE-2018-6129 CVE-2018-6130 CVE-2018-6131 CVE-2018-6132 CVE-2018-6133 CVE-2018-6134 CVE-2018-6135 CVE-2018-6136 CVE-2018-6137 CVE-2018-05-30
Bugzilla
CVE-2018-6123 CVE-2018-6124 CVE-2018-6125 CVE-2018-6126 CVE-2018-6127 CVE-2018-6129 CVE-2018-6130 CVE-2018-6131 CVE-2018-6132 CVE-2018-6133 CVE-2018-6134 CVE-2018-6135 CVE-2018-6136 CVE-2018-6137 CVE-2018-05-30
Bugzilla
CVE-2018-6124 chromium-browser: Type confusion in Blink2018-05-30
CVE-2018-6124 — Incorrect Type Conversion or Cast | cvebase