Google Chrome CVE-2018-18351 Input Validation Bypass Vulnerability
Description
Lack of proper validation of ancestor frames site when sending lax cookies in Navigation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass SameSite cookie policy via a crafted HTML page.
Affected Applications
Google Chrome