Cross-Site Search in Monorail - CVE-2018–19334
Published: December 4, 2018
Vulnerability identifier: #VU16226
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2018–19334
CWE-ID: CWE-200
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Google
Affected software:
Monorail
Monorail
Detailed vulnerability description
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The weakness exists due to Cross-Site Search (XS-Search) flaw in CSV downloads. A remote attacker can create a specially crafted HTML page or URL containing duplicated columns, trick the victim into visiting it and disclose vulnerable source code files and line numbers from private bug reports.
The weakness exists due to Cross-Site Search (XS-Search) flaw in CSV downloads. A remote attacker can create a specially crafted HTML page or URL containing duplicated columns, trick the victim into visiting it and disclose vulnerable source code files and line numbers from private bug reports.
How to mitigate CVE-2018–19334
Update to version 2018-05-04.