Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2019-5774

Опубликовано: 19 фев. 2019
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.8

Описание

Omission of the .desktop filetype from the Safe Browsing checklist in SafeBrowsing in Google Chrome on Linux prior to 72.0.3626.81 allowed an attacker who convinced a user to download a .desktop file to execute arbitrary code via a downloaded .desktop file.

РелизСтатусПримечание
bionic

released

72.0.3626.119-0ubuntu0.18.04.1
cosmic

released

72.0.3626.119-0ubuntu0.18.10.1
devel

released

72.0.3626.81-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [no longer updated]]
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [no longer updated]
upstream

released

72.0.3626.81
xenial

released

72.0.3626.119-0ubuntu0.16.04.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 75%
0.00866
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2019-5774

CVSS3: 6.5
redhat
около 7 лет назад

Omission of the .desktop filetype from the Safe Browsing checklist in SafeBrowsing in Google Chrome on Linux prior to 72.0.3626.81 allowed an attacker who convinced a user to download a .desktop file to execute arbitrary code via a downloaded .desktop file.

nvd логотип

CVE-2019-5774

CVSS3: 8.8
nvd
почти 7 лет назад

Omission of the .desktop filetype from the Safe Browsing checklist in SafeBrowsing in Google Chrome on Linux prior to 72.0.3626.81 allowed an attacker who convinced a user to download a .desktop file to execute arbitrary code via a downloaded .desktop file.

debian логотип

CVE-2019-5774

CVSS3: 8.8
debian
почти 7 лет назад

Omission of the .desktop filetype from the Safe Browsing checklist in ...

github логотип

GHSA-fpc2-4gv7-m4x8

CVSS3: 8.8
github
больше 3 лет назад

Omission of the .desktop filetype from the Safe Browsing checklist in SafeBrowsing in Google Chrome on Linux prior to 72.0.3626.81 allowed an attacker who convinced a user to download a .desktop file to execute arbitrary code via a downloaded .desktop file.

fstec логотип

BDU:2019-01309

CVSS3: 8.8
fstec
около 7 лет назад

Уязвимость браузера Google Chrome, связанная с некорректной проверкой ввода данных, позволяющая нарушителю загрузить .desktop файл для выполнения произвольного кода

EPSS

Процентиль: 75%
0.00866
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3