CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
EPSS
Percentile
5.1%
Lack of verification of an extension’s locale folder in Google Chrome prior
to 59.0.3071.86 for Mac, Windows, and Linux, and 59.0.3071.92 for Android,
allowed an attacker with local write access to modify extensions by
modifying extension files.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 17.10 | noarch | chromium-browser | < 59.0.3071.109-0ubuntu1.1360 | UNKNOWN |
ubuntu | 18.04 | noarch | chromium-browser | < 59.0.3071.109-0ubuntu1.1360 | UNKNOWN |
ubuntu | 18.10 | noarch | chromium-browser | < 59.0.3071.109-0ubuntu1.1360 | UNKNOWN |
ubuntu | 14.04 | noarch | chromium-browser | < 59.0.3071.109-0ubuntu0.14.04.1186 | UNKNOWN |
ubuntu | 16.04 | noarch | chromium-browser | < 59.0.3071.109-0ubuntu0.16.04.1289 | UNKNOWN |
ubuntu | 16.10 | noarch | chromium-browser | < 59.0.3071.109-0ubuntu0.16.10.1357 | UNKNOWN |
ubuntu | 17.04 | noarch | chromium-browser | < 59.0.3071.109-0ubuntu0.17.04.1360 | UNKNOWN |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
EPSS
Percentile
5.1%