PT-2023-25941 · Google+1 · Google Chrome+1
Rory Mcnamara
·
Publicado
2023-07-20
·
Atualizado
2023-08-15
·
CVE-2023-3739
CVSS v3.1
6.3
Média
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
Google Chrome on ChromeOS versions prior to 115.0.5790.131
Description
The issue is related to insufficient validation of untrusted input in Chromad, allowing a remote attacker to execute arbitrary code via a crafted shell script. The severity of this issue is classified as Low by Chromium.
Recommendations
For Google Chrome on ChromeOS versions prior to 115.0.5790.131, update to version 115.0.5790.131 or later to resolve the issue.
Exploit
Correção
Command Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Astra Linux
Google Chrome