Double-eviction Vulnerability in Google Chrome's Incognito Mode Cache

Double-eviction Vulnerability in Google Chrome's Incognito Mode Cache

CVE-2018-6118 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A double-eviction in the Incognito mode cache that lead to a user-after-free in cache in Google Chrome prior to 66.0.3359.139 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.

Learn more about our Cis Benchmark Audit For Google Chrome.