CVE-2018-6046

Insufficient data validation in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user cross-origin data via a crafted Chrome Extension.

Date published : 2018-09-25

http://www.securityfocus.com/bid/102797

https://chromereleases.googleblog.com/2018/01/stable-channel-update-for-desktop_24.html