CVE-2023-2460 - Fedoraproject Fedora, Debian Debian Linux and Google Chrome

Critical 7.1

Insufficient validation of untrusted input in Extensions in Google Chrome prior to 113.0.5672.63 allowed an attacker who convinced a user to install a malicious extension to bypass file access checks via a crafted HTML page. (Chromium security severity: Medium)

Affected software

Fedoraproject Fedora

Debian Debian Linux

Google Chrome

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.