Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2024-4950

Опубликовано: 15 мая 2024
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 6.5

Описание

Inappropriate implementation in Downloads in Google Chrome prior to 125.0.6422.60 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

РелизСтатусПримечание
devel

not-affected

code not present
esm-apps/noble

not-affected

code not present
esm-infra/focal

DNE

focal was not-affected [code not present]
focal

not-affected

code not present
jammy

not-affected

code not present
mantic

not-affected

code not present
noble

not-affected

code not present
upstream

released

Показывать по

Ссылки на источники

EPSS

Процентиль: 36%
0.00144
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2024-4950

CVSS3: 6.5
nvd
около 1 года назад

Inappropriate implementation in Downloads in Google Chrome prior to 125.0.6422.60 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

msrc логотип

CVE-2024-4950

msrc
около 1 года назад

Chromium: CVE-2024-4950 Inappropriate implementation in Downloads

debian логотип

CVE-2024-4950

CVSS3: 6.5
debian
около 1 года назад

Inappropriate implementation in Downloads in Google Chrome prior to 12 ...

github логотип

GHSA-h2pj-pf6w-85p2

CVSS3: 5.3
github
около 1 года назад

Inappropriate implementation in Downloads in Google Chrome prior to 125.0.6422.60 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

fstec логотип

BDU:2024-03960

CVSS3: 6.3
fstec
около 1 года назад

Уязвимость компонента Downloads (Загрузки) браузера Google Chrome, позволяющая нарушителю проводить спуфинг атаки

EPSS

Процентиль: 36%
0.00144
Низкий

6.5 Medium

CVSS3