exploitDog

GHSA-3gxj-93jf-h822

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

An ability to process crash dumps under root privileges and inappropriate symlinks handling could lead to a local privilege escalation in Crash Reporting in Google Chrome on Chrome OS prior to 61.0.3163.113 allowed a local attacker to perform privilege escalation via a crafted HTML page.

An ability to process crash dumps under root privileges and inappropriate symlinks handling could lead to a local privilege escalation in Crash Reporting in Google Chrome on Chrome OS prior to 61.0.3163.113 allowed a local attacker to perform privilege escalation via a crafted HTML page.

Ссылки

EPSS

Процентиль: 2%

0.00014

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-367

Связанные уязвимости

CVE-2017-15404

CVSS3: 7.8

ubuntu

около 7 лет назад

An ability to process crash dumps under root privileges and inappropriate symlinks handling could lead to a local privilege escalation in Crash Reporting in Google Chrome on Chrome OS prior to 61.0.3163.113 allowed a local attacker to perform privilege escalation via a crafted HTML page.

CVE-2017-15404

CVSS3: 7.8

nvd

около 7 лет назад

An ability to process crash dumps under root privileges and inappropriate symlinks handling could lead to a local privilege escalation in Crash Reporting in Google Chrome on Chrome OS prior to 61.0.3163.113 allowed a local attacker to perform privilege escalation via a crafted HTML page.

EPSS

Процентиль: 2%

0.00014

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-367