Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2023-5853
HistoryNov 01, 2023 - 6:15 p.m.

CVE-2023-5853

2023-11-0118:15:10
Debian Security Bug Tracker
security-tracker.debian.org
22
google chrome
security ui
vulnerability
cve-2023-5853
downloads
google
chrome
remote attacker
obfuscate
html page
chromium
severity
medium
unix

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

58.6%

Incorrect security UI in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

58.6%