Bypassing Navigation Restrictions in Google Chrome via Content Security Policy Implementation Vulnerability

Bypassing Navigation Restrictions in Google Chrome via Content Security Policy Implementation Vulnerability

CVE-2018-6148 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Incorrect implementation in Content Security Policy in Google Chrome prior to 67.0.3396.79 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

Learn more about our Cis Benchmark Audit For Google Chrome.