CVE-2018-6047

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 64.0.3282.119

Description The issue is related to insufficient policy enforcement in WebGL, allowing a remote attacker to potentially leak a user's redirect URL via a crafted HTML page. This could be achieved by exploiting the vulnerability in WebGL, which is a technology used for rendering 2D and 3D graphics in web browsers. The estimated number of potentially affected devices worldwide is not specified.

Recommendations For Google Chrome versions prior to 64.0.3282.119, update to version 64.0.3282.119 or later to resolve the issue. As a temporary workaround, consider disabling WebGL until a patch is available. Restrict access to potentially vulnerable web pages to minimize the risk of exploitation. Avoid using crafted HTML pages that could trigger the vulnerability until the issue is resolved.