Google Chrome Sensitive Information Disclosure Vulnerability

Last Update Date: 1 Mar 2019 10:44 Release Date: 1 Mar 2019 5033 Views

RISK: Medium Risk

TYPE: Clients - Browsers

TYPE: Browsers

A vulnerability was identified in Google Chrome, a remote attacker can exploit this vulnerability to disclose sensitive information on the targeted system. However, the issue only affects users who use Chrome as local PDF viewer to open malicious PDF files.

Impact

Information Disclosure

System / Technologies affected

Verisons prior to 72.0.3626.119

Solutions

Notes: No patch is currently available. Google plans a fix in April.

Please refer to the link below for possible mitigation plan:

https://blog.edgespot.io/2019/02/edgespot-detects-pdf-zero-day-samples.html

Before applying any mitigation steps, please consult your product support and software manufacturer for more details.

Vulnerability Identifier

No CVE information is available

Source

SecurityWizardry

Related Link

Share with

Cisco Products Multiple Vulnerabilities

28 Feb 2019 4442 Views

Adobe ColdFusion Remote Code Execution Vulnerability

4 Mar 2019 4684 Views