Описание
Insufficient data validation in Extensions API in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 75.0.3770.90-0ubuntu0.18.04.1 |
| cosmic | not-affected | 75.0.3770.90-0ubuntu0.18.10.1 |
| devel | not-affected | 75.0.3770.80-0ubuntu1~snap2 |
| disco | not-affected | 75.0.3770.90-0ubuntu0.19.04.1 |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | |
| upstream | released | |
| xenial | not-affected | 74.0.3729.169-0ubuntu0.16.04.1 |
Показывать по
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Insufficient data validation in Extensions API in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
Insufficient data validation in Extensions API in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
Insufficient data validation in Extensions API in Google Chrome prior ...
Insufficient data validation in Extensions API in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
4.3 Medium
CVSS2
6.5 Medium
CVSS3