DEBIAN-CVE-2018-18358

DEBIAN-CVE-2018-18358 PUBLISHED CVSS 5.699999809265137 MEDIUM

Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file.

Risk Scores

CVSS v3.0

5.699999809265137

CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Affected Products

Vendor	Product	Versions
Debian:13	chromium	0, 0, 0
Debian:12	chromium	0, 0, 0
Debian:11	chromium	0, 0, 0
Debian:14	chromium	0, 0, 0

Timeline

Dec 11, 2018 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2018-18358 advisory

Open in Interactive Console →