Medium severity6.5NVD Advisory· Published Jul 29, 2023· Updated Jun 17, 2026
CVE-2023-2311
CVE-2023-2311
Description
Insufficient policy enforcement in File System API in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. (Chromium security severity: Medium)
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
4- crbug.com/1354505nvdExploitIssue TrackingVendor Advisory
- chromereleases.googleblog.com/2023/04/stable-channel-update-for-desktop.htmlnvdRelease NotesVendor Advisory
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2LE64KGGOISKPKMYROSDT4K6QFVDIRF6/nvd
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B6SAST6CB5KKCQKH75ER2UQ3ICYPHCIZ/nvd
News mentions
0No linked articles in our index yet.