Cross-Site Search in Monorail - CVE-2018-10099
Published: December 4, 2018
Vulnerability identifier: #VU16225
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2018-10099
CWE-ID: CWE-200
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Google
Affected software:
Monorail
Monorail
Detailed vulnerability description
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The weakness exists due to Cross-Site Search (XS-Search) flaw in CSV downloads. A remote attacker can create a specially crafted HTML page or URL containing duplicated columns, trick the victim into visiting it and disclose vulnerable source code files and line numbers from private bug reports.
The weakness exists due to Cross-Site Search (XS-Search) flaw in CSV downloads. A remote attacker can create a specially crafted HTML page or URL containing duplicated columns, trick the victim into visiting it and disclose vulnerable source code files and line numbers from private bug reports.
How to mitigate CVE-2018-10099
Update to version 2018-04-04.