Zero-day vulnerability in Google Chrome


Not patched

Vulnerability exploitation was spotted by EdgeSpot in late December 2018. The company detected multiple PDF samples in the wild that use dangerous JavaScript method to send information, retrieved from user's computer to a third-party domain.

Vulnerability details

Advisory: SB2019022803 - Information disclosure via PDF files in Google Chrome

Vulnerable component: Google Chrome

CVE-ID:

CVSSv3 score:

CWE-ID: -

Description: