Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-2c6f-5h2f-xj25

Опубликовано: 02 дек. 2025
Источник: github
Github: Не прошло ревью
CVSS3: 5.3

Описание

Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass download protections via a crafted HTML page. (Chromium security severity: Low)

Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass download protections via a crafted HTML page. (Chromium security severity: Low)

Ссылки

EPSS

Процентиль: 6%
0.00023
Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2025-13637

Дефекты

CWE-449

Связанные уязвимости

ubuntu логотип

CVE-2025-13637

CVSS3: 4.3
ubuntu
2 месяца назад

Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass download protections via a crafted HTML page. (Chromium security severity: Low)

nvd логотип

CVE-2025-13637

CVSS3: 4.3
nvd
2 месяца назад

Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass download protections via a crafted HTML page. (Chromium security severity: Low)

msrc логотип

CVE-2025-13637

msrc
2 месяца назад

Chromium: CVE-2025-13637 Inappropriate implementation in Downloads

debian логотип

CVE-2025-13637

CVSS3: 4.3
debian
2 месяца назад

Inappropriate implementation in Downloads in Google Chrome prior to 14 ...

fstec логотип

BDU:2025-15249

CVSS3: 4.3
fstec
2 месяца назад

Уязвимость компонента Downloads браузера Google Chrome, позволяющая нарушителю обойти существующие ограничения безопасности

EPSS

Процентиль: 6%
0.00023
Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2025-13637

Дефекты

CWE-449