A missing origin check related to HLS manifests in Blink in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to bypass same origin policy via a crafted HTML page.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Chrome
Published: 2019-01-09T19:00:00
Updated: 2024-08-05T10:17:36.944Z
Reserved: 2018-08-29T00:00:00
Link: CVE-2018-16072
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-01-09T19:29:01.930
Modified: 2024-11-21T03:52:02.860
Link: CVE-2018-16072
Redhat