Lucene search
Ubuntu.comUB:CVE-2023-5477HistoryOct 11, 2023 - 12:00 a.m.
CVE-2023-5477
2023-10-1100:00:00
ubuntu.com
ubuntu.com
6
google chrome
inappropriate implementation
local attacker
access control
crafted command
cve-2023-5477
ubuntu
chromium-browser
snap
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
EPSS
0.001
Percentile
21.5%
Inappropriate implementation in Installer in Google Chrome prior to
118.0.5993.70 allowed a local attacker to bypass discretionary access
control via a crafted command. (Chromium security severity: Low)
Notes
| Author | Note |
|---|---|
| alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
| mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |
Related
veracode
veracode
Improper Authorization
2023-10-19 03:42:42
prion
prion
Design/Logic Flaw
2023-10-11 23:15:00
cve
cve
CVE-2023-5477
2023-10-11 23:15:10
osv
osv
CVE-2023-5477
2023-10-11 23:15:10
chromium - security update
2023-10-12 00:00:00
mscve
mscve
Chromium: CVE-2023-5477 Inappropriate implementation in Installer
2023-10-13 07:00:00
cvelist
cvelist
CVE-2023-5477
2023-10-11 22:28:53
nvd
nvd
CVE-2023-5477
2023-10-11 23:15:10
debiancve
debiancve
CVE-2023-5477
2023-10-11 23:15:10
mageia
mageia
Updated chromium-browser-stable packages fix bugs and vulnerabilities
2023-10-19 19:11:51
openvas
openvas
Google Chrome Security Update (stable-channel-update-for-desktop_10-2023-10) - Mac OS X
2023-10-12 00:00:00
Mageia: Security Advisory (MGASA-2023-0289)
2023-10-20 00:00:00
openSUSE: Security Advisory for opera (openSUSE-SU-2023:0337-1)
2024-03-04 00:00:00
nessus
nessus
Google Chrome < 118.0.5993.70 Multiple Vulnerabilities
2023-10-10 00:00:00
openSUSE 15 Security Update : opera (openSUSE-SU-2023:0337-1)
2023-10-30 00:00:00
Fedora 37 : chromium (2023-1c6a20aa0a)
2023-10-13 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: chromium-118.0.5993.70-1.fc37
2023-10-14 01:27:09
[SECURITY] Fedora 38 Update: chromium-118.0.5993.70-2.fc38
2023-10-21 01:29:59
[SECURITY] Fedora 39 Update: chromium-118.0.5993.117-1.fc39
2023-11-03 19:07:12
chrome
chrome
Stable Channel Update for Desktop
2023-10-10 00:00:00
kaspersky
kaspersky
KLA61361 Multiple vulnerabilities in Google Chrome
2023-10-10 00:00:00
KLA61411 Multiple vulnerabilities in Microsoft Browser
2023-10-13 00:00:00
debian
debian
[SECURITY] [DSA 5526-1] chromium security update
2023-10-12 17:31:21
freebsd
freebsd
chromium -- multiple vulnerabilities
2023-10-10 00:00:00
redos
redos
ROS-20240329-07
2024-03-29 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0160
2023-12-01 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0459
2023-08-28 00:00:00
gentoo
gentoo
QtWebEngine: Multiple Vulnerabilities
2023-12-22 00:00:00
QtWebEngine: Multiple Vulnerabilities
2023-11-25 00:00:00
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2024-01-31 00:00:00
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
EPSS
0.001
Percentile
21.5%
Related for UB:CVE-2023-5477