Lucene search
Veracode Vulnerability DatabaseVERACODE:42235HistoryAug 06, 2023 - 12:01 p.m.
Cross-site Scripting (XSS)
2023-08-0612:01:21
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
cross-site scripting
extensions
attacker
injection
html
privileged page
vulnerable
chrome
0.001 Low
EPSS
Percentile
34.5%
chromium is vulnerable to inappropriate implementation in Extensions, which allows an attacker to convince a user to install a malicious extension to inject scripts or HTML into a privileged page via a maliciously crafted Chrome Extension
References
chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop.html
crbug.com/1461895
lists.fedoraproject.org/archives/list/[email protected]/message/PQKT7EGDD2P3L7S3NXEDDRCPK4NNZNWJ/
security-tracker.debian.org/tracker/CVE-2023-4078
security.gentoo.org/glsa/202311-11
security.gentoo.org/glsa/202312-07
security.gentoo.org/glsa/202401-34
www.debian.org/security/2023/dsa-5467
Related
cve
cve
CVE-2023-4078
2023-08-03 01:15:12
ubuntucve
ubuntucve
CVE-2023-4078
2023-08-03 00:00:00
prion
prion
Design/Logic Flaw
2023-08-03 01:15:00
cvelist
cvelist
CVE-2023-4078
2023-08-03 00:27:47
mscve
mscve
Chromium: CVE-2023-4078 Inappropriate implementation in Extensions
2023-08-07 07:00:00
cnvd
cnvd
Google Chrome Code Execution Vulnerability (CNVD-2023-63471)
2023-08-06 00:00:00
debiancve
debiancve
CVE-2023-4078
2023-08-03 01:15:12
osv
osv
CVE-2023-4078
2023-08-03 01:15:12
kaspersky
kaspersky
KLA61309 Multiple vulnerabilities in Opera
2023-08-09 00:00:00
KLA51621 Multiple vulnerabilities in Google Chrome
2023-08-02 00:00:00
KLA51709 Multiple vulnerabilities in Microsoft Browser
2023-08-07 00:00:00
openvas
openvas
Google Chrome Security Updates (stable-channel-update-for-desktop-2023-08) - Windows
2023-08-03 00:00:00
Debian: Security Advisory (DSA-5467-1)
2023-08-07 00:00:00
nessus
nessus
Debian DSA-5467-1 : chromium - security update
2023-08-05 00:00:00
Google Chrome < 115.0.5790.170 Multiple Vulnerabilities
2023-08-02 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2023-08-02 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2023-08-02 00:00:00
gentoo
gentoo
QtWebEngine: Multiple Vulnerabilities
2023-12-22 00:00:00
QtWebEngine: Multiple Vulnerabilities
2023-11-25 00:00:00
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2024-01-31 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: chromium-115.0.5790.170-1.fc38
2023-08-12 04:26:44
rapid7blog
rapid7blog
Patch Tuesday - August 2023
2023-08-08 21:11:35