Lucene search
Veracode Vulnerability DatabaseVERACODE:47133HistoryMay 23, 2024 - 7:04 a.m.
UI Spoofing
2024-05-2307:04:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
ui spoofing
google chrome
downloads
remote attacker
html page
Goggle chrome is vulnerable to UI Spoofing. The vulnerability is caused due to an Inappropriate implementation in Downloads which allows a remote attacker to convince a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| chromium:sid | eq | 88.0.4324.182-1 | |
| chromium:sid | eq | 83.0.4103.116-3.1 | |
| chromium:sid | eq | 88.0.4324.182-1 | |
| chromium:sid | eq | 83.0.4103.116-3.1 |
References
chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_15.html
issues.chromium.org/issues/40065403
lists.fedoraproject.org/archives/list/[email protected]/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/
lists.fedoraproject.org/archives/list/[email protected]/message/NTSN22LNYXMWHVTYNOYQVOY7VDZFHENQ/
lists.fedoraproject.org/archives/list/[email protected]/message/WSUWM73ZCXTN62AT2REYQDD5ZKPFMDZD/
security-tracker.debian.org/tracker/CVE-2024-4950
Related
ubuntucve
ubuntucve
CVE-2024-4950
2024-05-15 00:00:00
cvelist
cvelist
CVE-2024-4950
2024-05-15 20:42:34
osv
osv
CVE-2024-4950
2024-05-15 21:15:09
chromium - security update
2024-05-17 00:00:00
nvd
nvd
CVE-2024-4950
2024-05-15 21:15:09
wolfi
wolfi
CVE-2024-4950 vulnerabilities
2024-06-26 03:08:30
debiancve
debiancve
CVE-2024-4950
2024-05-15 21:15:09
vulnrichment
vulnrichment
CVE-2024-4950
2024-05-15 20:42:34
mscve
mscve
Chromium: CVE-2024-4950 Inappropriate implementation in Downloads
2024-05-16 07:00:43
cve
cve
CVE-2024-4950
2024-05-15 21:15:09
openvas
openvas
Google Chrome Security Update (stable-channel-update-for-desktop_15-2024-05) - Windows
2024-05-16 00:00:00
Debian: Security Advisory (DSA-5694-1)
2024-05-20 00:00:00
Mageia: Security Advisory (MGASA-2024-0190)
2024-05-22 00:00:00
kaspersky
kaspersky
KLA67583 Multiple vulnerabilities in Google Chrome
2024-05-15 00:00:00
KLA67626 Multiple vulnerabilities in Microsoft Browser
2024-05-16 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerabilities
2024-05-22 02:17:20
nessus
nessus
Google Chrome < 125.0.6422.60 Multiple Vulnerabilities
2024-05-15 00:00:00
Google Chrome < 125.0.6422.60 Multiple Vulnerabilities
2024-05-16 00:00:00
Debian dsa-5694 : chromium - security update
2024-05-17 00:00:00
debian
debian
[SECURITY] [DSA 5694-1] chromium security update
2024-05-17 18:06:13
chrome
chrome
Stable Channel Update for Desktop
2024-05-15 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: chromium-125.0.6422.60-1.fc39
2024-05-18 01:26:56
[SECURITY] Fedora 40 Update: chromium-125.0.6422.60-1.fc40
2024-05-17 01:09:13
[SECURITY] Fedora 38 Update: chromium-125.0.6422.60-1.fc38
2024-05-18 01:44:05
freebsd
freebsd
chromium -- multiple security fixes
2024-05-21 00:00:00