Home

CVE-2018-6126

Description

A precision error in Skia in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
45.608

Associated Vulnerability

VulnerabilityOS Platform
Updates for Google Chrome (67.0.3396.62)Windows
Updates for Google Chrome (x64) (67.0.3396.62)Windows
Multiple vulnerabilities are fixed in Google Chrome for Mac 66.0.3359.203Mac
Multiple vulnerabilities are fixed in Google Chrome for Mac 66.0.3359.20366.0.3359.203Mac
Multiple vulnerabilities are fixed in Google Chrome for Mac 67.0.3396.62Mac
Multiple vulnerabilities are fixed in Google Chrome for Mac 67.0.3396.68Mac
Multiple vulnerabilities are fixed in Google Chrome for Mac 67.0.3396.6866.0.3359.203Mac
Multiple vulnerabilities are fixed in Google Chrome for Mac 68.0.3440.4Mac
Multiple vulnerabilities are fixed in Google Chrome for Mac 68.0.3440.466.0.3359.203Mac
Multiple vulnerabilities are fixed in Update for Google Chrome For Mac (68.0.3440.75)Mac
Multiple vulnerabilities are fixed in Google Chrome for Mac 68.0.3440.766.0.3359.203Mac
Vulnerabilities CVE-2018-6126 are fixed in Update for Mozilla Firefox For Mac (60.0.2)Mac
Mozilla Open Source web browser (USN-3435-2) firefox_60.0.2+build1-0ubuntu0.14.04.1_amd64.debLinux
Mozilla Open Source web browser (USN-3477-1) firefox_60.0.2+build1-0ubuntu0.14.04.1_i386.debLinux
Mozilla Open Source web browser (USN-3477-2) firefox_61.0.1+build1-0ubuntu0.14.04.1_amd64.debLinux
Mozilla Open Source web browser (USN-3477-2) firefox_60.0.2+build1-0ubuntu0.16.04.1_amd64.debLinux
Mozilla Open Source web browser (USN-3477-2) firefox_60.0.2+build1-0ubuntu0.16.04.1_i386.debLinux
Mozilla Open Source web browser (USN-3477-3) firefox_61.0.1+build1-0ubuntu0.14.04.1_i386.debLinux
Mozilla Open Source web browser (USN-3477-3) firefox_61.0.1+build1-0ubuntu0.17.10.1_i386.debLinux
Mozilla Open Source web browser (USN-3599-1) firefox_61.0.1+build1-0ubuntu0.17.10.1_i386.debLinux
Mozilla Open Source web browser (USN-3609-1) firefox_61.0.1+build1-0ubuntu0.17.10.1_i386.debLinux
Mozilla Open Source web browser (USN-3596-2) firefox_61.0.1+build1-0ubuntu0.16.04.1_amd64.debLinux
Mozilla Open Source web browser (USN-3596-2) firefox_61.0.1+build1-0ubuntu0.16.04.1_i386.debLinux
Mozilla Open Source web browser (USN-3645-1) firefox_60.0.2+build1-0ubuntu0.17.10.1_i386.debLinux
Mozilla Open Source web browser (USN-3682-1) firefox_61.0.1+build1-0ubuntu0.17.10.1_i386.debLinux
Mozilla Open Source web browser (USN-3682-1) firefox_60.0.2+build1-0ubuntu0.17.10.1_amd64.debLinux
Mozilla Open Source web browser (USN-3682-1) firefox_60.0.2+build1-0ubuntu0.18.04.1_i386.debLinux
Mozilla Open Source web browser (USN-3682-1) firefox_60.0.2+build1-0ubuntu0.18.04.1_amd64.debLinux
firefox-esr security update(DSA-4220-1) firefox-esr_52.8.1esr-1~deb9u1_i386.debLinux
firefox-esr security update(DSA-4220-1) firefox-esr_52.8.1esr-1~deb9u1_amd64.debLinux
Updates for Google Chrome (67.0.3396.62) (For Debian)Linux
Updates for Google Chrome (67.0.3396.62) (For Centos)Linux
Updates for Google Chrome (67.0.3396.62) (For RedHat)Linux
Updates for Google Chrome (67.0.3396.62) (For Suse)Linux
Updates for Google Chrome (67.0.3396.62) (For Ubuntu)Linux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-307607Updates for Google Chrome (67.0.3396.62)
PATCH-307608Updates for Google Chrome (x64) (67.0.3396.62)
PATCH-611995Google Chrome for Mac (140.0.7339.132 , 140.0.7339.133)
PATCH-611995Google Chrome for Mac (140.0.7339.132 , 140.0.7339.133)
PATCH-611995Google Chrome for Mac (140.0.7339.132 , 140.0.7339.133)
PATCH-611995Google Chrome for Mac (140.0.7339.132 , 140.0.7339.133)
PATCH-611995Google Chrome for Mac (140.0.7339.132 , 140.0.7339.133)
PATCH-611995Google Chrome for Mac (140.0.7339.132 , 140.0.7339.133)
PATCH-611995Google Chrome for Mac (140.0.7339.132 , 140.0.7339.133)
PATCH-609673Google Chrome for Mac (132.0.6834.83, 132.0.6834.84)
PATCH-611995Google Chrome for Mac (140.0.7339.132 , 140.0.7339.133)
PATCH-607000Mozilla Firefox For Mac (124.0)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234