Описание
Insufficient policy enforcement in WebUSB in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)
An insufficient policy enforcement flaw was found in the WebUSB component of the Chromium browser.
Upstream bug(s):
https://code.google.com/p/chromium/issues/detail?id=489711638
Отчет
Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.
Дополнительная информация
Статус:
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
Insufficient policy enforcement in WebUSB in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)
Insufficient policy enforcement in WebUSB in Google Chrome prior to 14 ...
Insufficient policy enforcement in WebUSB in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)
EPSS
6.5 Medium
CVSS3