CVE-2023-7261

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 1.3.36.351

Description The issue is related to an inappropriate implementation in Google Updator, which allows a local attacker to perform privilege escalation via a malicious file. The severity of this issue is considered high.

Recommendations For versions prior to 1.3.36.351, update to version 1.3.36.351 or later to resolve the issue. As a temporary workaround, consider restricting access to the Google Updator until a patch is applied.

Exploit

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-233CWE-732

Related Identifiers

BDU:2024-04842

CVE-2023-7261

ZDI-24-1041

Affected Products

Google Chrome

Google Updator

CVE-2023-7261

Weakness Enumeration

Related Identifiers

Affected Products

References · 20