4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
0.003 Low
EPSS
Percentile
68.5%
chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability to impersonate a trusted website and trick the user into performing actions such as revealing sensitive information or installing malware. This could have serious consequences for the victim, such as financial losses, identity theft, or damage to their computer systems.
chromereleases.googleblog.com/2023/05/stable-channel-update-for-desktop.html
crbug.com/1416380
lists.fedoraproject.org/archives/list/[email protected]/message/6P5RJ6UD37IPBWU3GPQNMIUFVOVCGSLY/
lists.fedoraproject.org/archives/list/[email protected]/message/U3V6GPGMY6ZWVWPECMQGGOKQVATXJ5BA/
lists.fedoraproject.org/archives/list/[email protected]/message/Z4JI552XDFD6DYFU6WNCRBCAXWOFOOSF/
security-tracker.debian.org/tracker/CVE-2023-2468
security.gentoo.org/glsa/202309-17
www.debian.org/security/2023/dsa-5398