PT-2023-25941 · Google+1 · Google Chrome+1
Rory Mcnamara
·
Published
2023-07-20
·
Updated
2023-08-15
·
CVE-2023-3739
CVSS v3.1
6.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
Google Chrome on ChromeOS versions prior to 115.0.5790.131
Description
The issue is related to insufficient validation of untrusted input in Chromad, allowing a remote attacker to execute arbitrary code via a crafted shell script. The severity of this issue is classified as Low by Chromium.
Recommendations
For Google Chrome on ChromeOS versions prior to 115.0.5790.131, update to version 115.0.5790.131 or later to resolve the issue.
Exploit
Fix
Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Astra Linux
Google Chrome