Lucene search
Ubuntu.comUB:CVE-2023-3739HistoryAug 01, 2023 - 12:00 a.m.
CVE-2023-3739
2023-08-0100:00:00
ubuntu.com
ubuntu.com
42
chromad
google chrome
remote code execution
input validation
crafted shell script
chromium security severity low
6.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
30.4%
Insufficient validation of untrusted input in Chromad in Google Chrome on
ChromeOS prior to 115.0.5790.131 allowed a remote attacker to execute
arbitrary code via a crafted shell script. (Chromium security severity:
Low)
Notes
| Author | Note |
|---|---|
| alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
| mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |
Related
veracode
veracode
Arbitrary Code Execution
2023-08-06 07:12:34
nvd
nvd
CVE-2023-3739
2023-08-01 23:15:33
cve
cve
CVE-2023-3739
2023-08-01 23:15:33
prion
prion
Input validation
2023-08-01 23:15:00
cnvd
cnvd
Google Chrome Input Validation Error Vulnerability (CNVD-2023-65158)
2023-08-03 00:00:00
osv
osv
CVE-2023-3739
2023-08-01 23:15:33
chromium - security update
2023-07-20 00:00:00
cvelist
cvelist
CVE-2023-3739
2023-08-01 22:39:18
debiancve
debiancve
CVE-2023-3739
2023-08-01 23:15:33
chrome
chrome
Stable Channel Update for ChromeOS / ChromeOS Flex
2023-07-20 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5456-1)
2023-07-21 00:00:00
6.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
30.4%
Related for UB:CVE-2023-3739