CVE-2018-6066

MEDIUM

Google Chrome <65.0.3325.146 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-6066. PoCs published by DISREL.

AI-analyzed exploit summary This repository contains a README referencing a blog post about CVE-2018-6606, which involves achieving Ring0 privileges using a Word document with VBA. No actual exploit code is present in the provided files.

Description

Lack of CORS checking by ResourceFetcher/ResourceLoader in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Exploits (1)

nomisec WRITEUP 68 stars
by DISREL · poc
https://github.com/DISREL/Ring0VBA

This repository contains a README referencing a blog post about CVE-2018-6606, which involves achieving Ring0 privileges using a Word document with VBA. No actual exploit code is present in the provided files.

Classification
Writeup 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Theoretical
Target: Microsoft Word (specific version not specified)
No auth needed
Prerequisites: Vulnerable version of Microsoft Word · User interaction to open the malicious document
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Issue Tracking x_refsource_misc
https://crbug.com/799477
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/103297
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0484
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2018/dsa-4182

Scores

CVSS v3 6.5
EPSS 0.0267
EPSS Percentile 83.9%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Details

CWE
CWE-200
Status published
Products (5)
debian/debian_linux 9.0
google/chrome < 65.0.3325.146
redhat/linux_desktop 6.0
redhat/linux_server 6.0
redhat/linux_workstation 6.0
Published Nov 14, 2018
Tracked Since Feb 18, 2026