SB2018120404 - Information disclosure in Google Monorail
Published: December 4, 2018
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 vulnerabilities.
1) Cross-Site Search (CVE-ID: CVE-2018-10099)
CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The weakness exists due to Cross-Site Search (XS-Search) flaw in CSV downloads. A remote attacker can create a specially crafted HTML page or URL containing duplicated columns, trick the victim into visiting it and disclose vulnerable source code files and line numbers from private bug reports.
2) Cross-Site Search (CVE-ID: CVE-2018–19334)
CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The weakness exists due to Cross-Site Search (XS-Search) flaw in CSV downloads. A remote attacker can create a specially crafted HTML page or URL containing duplicated columns, trick the victim into visiting it and disclose vulnerable source code files and line numbers from private bug reports.
3) Cross-Site Search (CVE-ID: CVE-2018–19335)
CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The weakness exists due to Cross-Site Search (XS-Search) flaw in CSV downloads. A remote attacker can create a specially crafted HTML page or URL containing duplicated columns, trick the victim into visiting it and disclose vulnerable source code files and line numbers from private bug reports.
Remediation
Install update from vendor's website.