Lucene search

ChromeCVE-2023-6512

HistoryDec 06, 2023 - 2:15 a.m.

CVE-2023-6512

2023-12-0602:15:07

Chrome

web.nvd.nist.gov

cve-2023

6512

inappropriate implementation

web browser

google chrome

120.0.6099.62

remote attacker

spoofing

iframe dialog

context menu

html page

chromium

security vulnerability

low severity

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

42.1%

JSON

Inappropriate implementation in Web Browser UI in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to potentially spoof the contents of an iframe dialog context menu via a crafted HTML page. (Chromium security severity: Low)

Affected configurations

Nvd

Vulners

Node

debiandebian_linuxMatch11.0

debiandebian_linuxMatch12.0

fedoraprojectfedoraMatch38

fedoraprojectfedoraMatch39

Node

googlechromeRange<120.0.6099.62

VendorProductVersionCPE
debiandebian_linux11.0cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
debiandebian_linux12.0cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*
fedoraprojectfedora38cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
fedoraprojectfedora39cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
debian	debian_linux	11.0	cpe:2.3:o:debian:debian_linux:11.0:::::::*
debian	debian_linux	12.0	cpe:2.3:o:debian:debian_linux:12.0:::::::*
fedoraproject	fedora	38	cpe:2.3:o:fedoraproject:fedora:38:::::::*
fedoraproject	fedora	39	cpe:2.3:o:fedoraproject:fedora:39:::::::*
google	chrome	*	cpe:2.3:a:google:chrome::::::::

CNA Affected

[
  {
    "vendor": "Google",
    "product": "Chrome",
    "versions": [
      {
        "version": "120.0.6099.62",
        "status": "affected",
        "lessThan": "120.0.6099.62",
        "versionType": "custom"
      }
    ]
  }
]