CVE-2018-18346 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2018-18346 Interim 1 29 2025-08-14T02:25:22Z current 2021-05-30T14:17:54Z 2025-08-14T02:25:22Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2018-18346 Incorrect handling of alert box display in Blink in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to present confusing browser UI via a crafted HTML page. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/77FPDEO74ADXIQWICBUTMRZ62KFKNUSQ/#77FPDEO74ADXIQWICBUTMRZ62KFKNUSQ E-Mail link for openSUSE-SU-2018:4056-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/K7WIKJO7MZOYYHJWQ7C3XXPK23MP2YND/#K7WIKJO7MZOYYHJWQ7C3XXPK23MP2YND E-Mail link for openSUSE-SU-2018:4142-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PWE5NUKJ4YIN5BIHKKSD55F2QU6JUG46/#PWE5NUKJ4YIN5BIHKKSD55F2QU6JUG46 E-Mail link for openSUSE-SU-2018:4143-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 12 SP2 SUSE Package Hub 15 openSUSE Leap 15.0 openSUSE Leap 15.2 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Tumbleweed chromedriver-71.0.3578.80-bp150.2.23.1 chromedriver-71.0.3578.80-lp150.2.30.1 chromedriver-71.0.3578.98-80.1 chromedriver-93.0.4577.82-1.1 chromium-101.0.4951.64-bp154.1.2 chromium-71.0.3578.80-bp150.2.23.1 chromium-71.0.3578.80-lp150.2.30.1 chromium-71.0.3578.98-80.1 chromium-83.0.4103.97-lp152.1.1 chromium-90.0.4430.212-bp153.1.1 chromium-93.0.4577.82-1.1 ungoogled-chromium-113.0.5672.92-1.1 ungoogled-chromium-chromedriver-113.0.5672.92-1.1 chromedriver-71.0.3578.98-80.1 as a component of SUSE Package Hub 12 SP2 chromium-71.0.3578.98-80.1 as a component of SUSE Package Hub 12 SP2 chromedriver-71.0.3578.80-bp150.2.23.1 as a component of SUSE Package Hub 15 chromium-71.0.3578.80-bp150.2.23.1 as a component of SUSE Package Hub 15 chromedriver-71.0.3578.80-lp150.2.30.1 as a component of openSUSE Leap 15.0 chromium-71.0.3578.80-lp150.2.30.1 as a component of openSUSE Leap 15.0 chromium-83.0.4103.97-lp152.1.1 as a component of openSUSE Leap 15.2 chromium-90.0.4430.212-bp153.1.1 as a component of openSUSE Leap 15.3 chromium-101.0.4951.64-bp154.1.2 as a component of openSUSE Leap 15.4 chromedriver-93.0.4577.82-1.1 as a component of openSUSE Tumbleweed chromium-93.0.4577.82-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-chromedriver-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed Incorrect handling of alert box display in Blink in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to present confusing browser UI via a crafted HTML page. CVE-2018-18346 SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1 SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1 SUSE Package Hub 15:chromedriver-71.0.3578.80-bp150.2.23.1 SUSE Package Hub 15:chromium-71.0.3578.80-bp150.2.23.1 openSUSE Leap 15.0:chromedriver-71.0.3578.80-lp150.2.30.1 openSUSE Leap 15.0:chromium-71.0.3578.80-lp150.2.30.1 openSUSE Leap 15.2:chromium-83.0.4103.97-lp152.1.1 openSUSE Leap 15.3:chromium-90.0.4430.212-bp153.1.1 openSUSE Leap 15.4:chromium-101.0.4951.64-bp154.1.2 openSUSE Tumbleweed:chromedriver-93.0.4577.82-1.1 openSUSE Tumbleweed:chromium-93.0.4577.82-1.1 openSUSE Tumbleweed:ungoogled-chromium-113.0.5672.92-1.1 openSUSE Tumbleweed:ungoogled-chromium-chromedriver-113.0.5672.92-1.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N