Lucene search
ChromeCVE-2023-5478HistoryOct 11, 2023 - 11:15 p.m.
CVE-2023-5478
2023-10-1123:15:10
Chrome
web.nvd.nist.gov
207
cve-2023-5478
google chrome
autofill
cross-origin data
security vulnerability
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
AI Score
4.8
Confidence
High
EPSS
0.001
Percentile
50.3%
Inappropriate implementation in Autofill in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
Affected configurations
Node
googlechromeRange<118.0.5993.70
Node
debiandebian_linuxMatch11.0
ORdebiandebian_linuxMatch12.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| chrome | * | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* | |
| debian | debian_linux | 11.0 | cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* |
| debian | debian_linux | 12.0 | cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Google",
"product": "Chrome",
"versions": [
{
"version": "118.0.5993.70",
"status": "affected",
"lessThan": "118.0.5993.70",
"versionType": "custom"
}
]
}
]Related
debiancve
debiancve
CVE-2023-5478
2023-10-11 23:15:10
cvelist
cvelist
CVE-2023-5478
2023-10-11 22:28:53
nvd
nvd
CVE-2023-5478
2023-10-11 23:15:10
veracode
veracode
Information Disclosure
2023-10-19 03:42:40
mscve
mscve
Chromium: CVE-2023-5478 Inappropriate implementation in Autofill
2023-10-13 07:00:00
ubuntucve
ubuntucve
CVE-2023-5478
2023-10-11 00:00:00
prion
prion
Design/Logic Flaw
2023-10-11 23:15:00
osv
osv
CVE-2023-5478
2023-10-11 23:15:10
chromedriver-118.0.5993.70-1.1 on GA media
2024-06-15 00:00:00
ungoogled-chromium-118.0.5993.70-1.1 on GA media
2024-06-15 00:00:00
openvas
openvas
nessus
nessus
Fedora 37 : chromium (2023-1c6a20aa0a)
2023-10-13 00:00:00
Debian DSA-5526-1 : chromium - security update
2023-10-13 00:00:00
Google Chrome < 118.0.5993.70 Multiple Vulnerabilities
2023-10-10 00:00:00
debian
debian
[SECURITY] [DSA 5526-1] chromium security update
2023-10-12 17:31:21
chrome
chrome
Stable Channel Update for Desktop
2023-10-10 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: chromium-118.0.5993.70-1.fc37
2023-10-14 01:27:09
[SECURITY] Fedora 38 Update: chromium-118.0.5993.70-2.fc38
2023-10-21 01:29:59
[SECURITY] Fedora 39 Update: chromium-118.0.5993.117-1.fc39
2023-11-03 19:07:12
mageia
mageia
Updated chromium-browser-stable packages fix bugs and vulnerabilities
2023-10-19 19:11:51
kaspersky
kaspersky
KLA61361 Multiple vulnerabilities in Google Chrome
2023-10-10 00:00:00
KLA61411 Multiple vulnerabilities in Microsoft Browser
2023-10-13 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2023-10-10 00:00:00
redos
redos
ROS-20240329-07
2024-03-29 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0160
2023-12-01 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0459
2023-08-28 00:00:00
gentoo
gentoo
QtWebEngine: Multiple Vulnerabilities
2023-12-22 00:00:00
QtWebEngine: Multiple Vulnerabilities
2023-11-25 00:00:00
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2024-01-31 00:00:00
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
AI Score
4.8
Confidence
High
EPSS
0.001
Percentile
50.3%
Related for CVE-2023-5478