The host is installed with Google Chrome before 67.0.3396.79 and is prone to an incorrect handling of CSP header vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact.