Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-12431

Опубликовано: 10 нояб. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 6.5

Описание

Inappropriate implementation in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. (Chromium security severity: High)

РелизСтатусПримечание
devel

not-affected

code not present
esm-apps/noble

not-affected

code not present
jammy

not-affected

code not present
noble

not-affected

code not present
plucky

not-affected

code not present
questing

not-affected

code not present
upstream

released

Показывать по

Ссылки на источники

EPSS

Процентиль: 2%
0.00018
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-12431

CVSS3: 6.5
nvd
9 дней назад

Inappropriate implementation in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. (Chromium security severity: High)

msrc логотип

CVE-2025-12431

msrc
20 дней назад

Chromium: CVE-2025-12431 Inappropriate implementation in Extensions

debian логотип

CVE-2025-12431

CVSS3: 6.5
debian
9 дней назад

Inappropriate implementation in Extensions in Google Chrome prior to 1 ...

github логотип

GHSA-3p2j-4mpr-385w

CVSS3: 6.5
github
9 дней назад

Inappropriate implementation in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. (Chromium security severity: High)

fstec логотип

BDU:2025-14009

CVSS3: 6.3
fstec
4 месяца назад

Уязвимость компонента Extensions браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю обойти существующие ограничения безопасности

EPSS

Процентиль: 2%
0.00018
Низкий

6.5 Medium

CVSS3