Описание
Incorrect security UI in WebAppInstalls in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
Ссылки
- Release NotesVendor Advisory
- Permissions Required
Уязвимые конфигурации
Конфигурация 1Версия до 146.0.7680.71 (исключая)
Одновременно
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 7%
0.00026
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-451
Связанные уязвимости
CVSS3: 6.5
redhat
16 дней назад
An incorrect security ui flaw was found in the WebAppInstalls component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=479326680
CVSS3: 6.5
debian
14 дней назад
Incorrect security UI in WebAppInstalls in Google Chrome prior to 146. ...
CVSS3: 4.3
github
14 дней назад
Incorrect security UI in WebAppInstalls in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
EPSS
Процентиль: 7%
0.00026
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-451