Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-0139

Опубликовано: 10 янв. 2023
Источник: ubuntu
Приоритет: medium
CVSS3: 6.5

Описание

Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to bypass download restrictions via a crafted HTML page. (Chromium security severity: Low)

РелизСтатусПримечание
bionic

released

109.0.5414.74-0ubuntu0.18.04.14
devel

not-affected

code not present
esm-infra/focal

DNE

focal was not-affected [code not present]
focal

not-affected

code not present
jammy

not-affected

code not present
kinetic

not-affected

code not present
trusty

ignored

end of standard support
upstream

released

xenial

ignored

end of standard support

Показывать по

Ссылки на источники

6.5 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2023-0139

CVSS3: 6.5
nvd
около 3 лет назад

Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to bypass download restrictions via a crafted HTML page. (Chromium security severity: Low)

msrc логотип

CVE-2023-0139

msrc
около 3 лет назад

Chromium:CVE-2023-0139: Insufficient validation of untrusted input in Downloads

debian логотип

CVE-2023-0139

CVSS3: 6.5
debian
около 3 лет назад

Insufficient validation of untrusted input in Downloads in Google Chro ...

github логотип

GHSA-cgx2-fm93-35wf

CVSS3: 6.5
github
около 3 лет назад

Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to bypass download restrictions via a crafted HTML page. (Chromium security severity: Low)

fstec логотип

BDU:2023-00537

CVSS3: 6.5
fstec
больше 3 лет назад

Уязвимость механизма «Downloads» («Загрузки») браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю обойти ограничения безопасности

6.5 Medium

CVSS3