Lucene search

K
cvelistChromeCVELIST:CVE-2023-5485
HistoryOct 11, 2023 - 10:28 p.m.

CVE-2023-5485

2023-10-1122:28:53
Chrome
www.cve.org
1
inappropriate implementation
autofill
google chrome
remote attacker
bypass
restrictions
crafted html page
low severity

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.6%

Inappropriate implementation in Autofill in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to bypass autofill restrictions via a crafted HTML page. (Chromium security severity: Low)

CNA Affected

[
  {
    "vendor": "Google",
    "product": "Chrome",
    "versions": [
      {
        "version": "118.0.5993.70",
        "status": "affected",
        "lessThan": "118.0.5993.70",
        "versionType": "custom"
      }
    ]
  }
]