How severe is CVE-2023-0704?

CVE-2023-0704 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2023-0704

Name: chrome
Author: google

6.5MEDIUM

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. (Chromium securit

Published: 2/7/2023Updated: 3/20/2025

Description

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. (Chromium security severity: Low)

AI AnalysisPowered by AI

Affected Products

googlechrome

References

https://chromereleases.googleblog.com/2023/02/stable-channel-update-for-desktop.html
Vendor Advisory
https://crbug.com/1385982
Permissions RequiredVendor Advisory
https://security.gentoo.org/glsa/202309-17
Third Party Advisory
https://chromereleases.googleblog.com/2023/02/stable-channel-update-for-desktop.html
Vendor Advisory
https://crbug.com/1385982
Permissions RequiredVendor Advisory
https://security.gentoo.org/glsa/202309-17
Third Party Advisory