How severe is CVE-2023-0704?

CVE-2023-0704 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2023-0704

Name: chrome
Author: google

6.5MEDIUM

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. (Chromium securit

Опубликовано: 2/7/2023Обновлено: 3/20/2025

Описание

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. (Chromium security severity: Low)

ИИ-АнализНа базе ИИ

Затронутые продукты

googlechrome

Ссылки

https://chromereleases.googleblog.com/2023/02/stable-channel-update-for-desktop.html
Vendor Advisory
https://crbug.com/1385982
Permissions RequiredVendor Advisory
https://security.gentoo.org/glsa/202309-17
Third Party Advisory
https://chromereleases.googleblog.com/2023/02/stable-channel-update-for-desktop.html
Vendor Advisory
https://crbug.com/1385982
Permissions RequiredVendor Advisory
https://security.gentoo.org/glsa/202309-17
Third Party Advisory