vulnerability

Gentoo Linux: CVE-2023-2460: Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:P/A:N)

Published

May 3, 2023

Added

Oct 2, 2023

Modified

Mar 31, 2026

Description

Insufficient validation of untrusted input in Extensions in Google Chrome prior to 113.0.5672.63 allowed an attacker who convinced a user to install a malicious extension to bypass file access checks via a crafted HTML page. (Chromium security severity: Medium)

Solutions

gentoo-linux-upgrade-www-client-chromiumgentoo-linux-upgrade-www-client-chromium-bingentoo-linux-upgrade-www-client-google-chromegentoo-linux-upgrade-www-client-microsoft-edge

References

CVE-2023-2460
https://attackerkb.com/topics/CVE-2023-2460
EUVD-EUVD-2023-33945
GENTOO-202309-17
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-33945

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report