Lucene search
GoogleOSV:CVE-2024-5500HistoryJul 16, 2024 - 11:15 p.m.
CVE-2024-5500
2024-07-1623:15:24
Google
osv.dev
6
google chrome
inappropriate implementation
sign-in
remote attacker
navigation restrictions
crafted html page
cve-2024-5500
medium severity
software
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
AI Score
6
Confidence
High
EPSS
0.001
Percentile
18.3%
Inappropriate implementation in Sign-In in Google Chrome prior to 1.3.36.351 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)
Related
vulnrichment
vulnrichment
CVE-2024-5500
2024-07-16 22:14:04
redos
redos
ROS-20240726-07
2024-07-26 00:00:00
debiancve
debiancve
CVE-2024-5500
2024-07-16 23:15:24
cvelist
cvelist
CVE-2024-5500
2024-07-16 22:14:04
nvd
nvd
CVE-2024-5500
2024-07-16 23:15:24
cve
cve
CVE-2024-5500
2024-07-16 23:15:24
openvas
openvas
Debian: Security Advisory (DSA-5629-1)
2024-02-26 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2024-02-20 00:00:00
kaspersky
kaspersky
KLA64091 Multiple vulnerabilities in Google Chrome
2024-02-20 00:00:00
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
AI Score
6
Confidence
High
EPSS
0.001
Percentile
18.3%
Related for OSV:CVE-2024-5500