VYPR
High severity8.8NVD Advisory· Published Aug 15, 2023· Updated Jun 17, 2026

CVE-2023-4369

CVE-2023-4369

Description

Insufficient data validation in Systems Extensions in Google Chrome on ChromeOS prior to 116.0.5845.120 allowed an attacker who convinced a user to install a malicious extension to bypass file restrictions via a crafted HTML page. (Chromium security severity: Medium)

Affected products

3
  • Google/ChromeOSllm-fuzzy
    Range: <116.0.5845.120
  • Google/Chromellm-fuzzy2 versions
    <116.0.5845.120+ 1 more
    • (no CPE)range: <116.0.5845.120
    • (no CPE)range: 116.0.5845.120

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.