4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
0.001 Low
EPSS
Percentile
47.8%
chromium is vulnerable to Authorization Bypasses. This obfuscation vulnerability could be exploited by a malicious website. The vulnerability could allow an attacker to hide security warnings and notifications from the user, making it easier to trick the user into granting permissions that they should not grant.
chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html
crbug.com/1406922
lists.fedoraproject.org/archives/list/[email protected]/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/
lists.fedoraproject.org/archives/list/[email protected]/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/
security-tracker.debian.org/tracker/CVE-2023-4364
security.gentoo.org/glsa/202401-34
www.debian.org/security/2023/dsa-5479