Google Chrome prior 75.0.3770.80 on Android Dialog Box HTML Page spoofing – DigitalMunition




Exploit Cybersecurity study of the dark web exposes vulnerability to machine identities -- ScienceDaily

Published on June 28th, 2019 📆 | 7813 Views ⚑

0

Google Chrome prior 75.0.3770.80 on Android Dialog Box HTML Page spoofing

CVSS Meta Temp Score Current Exploit Price (≈)
6.0 $5k-$25k

A vulnerability was found in Google Chrome on Android (Web Browser). It has been rated as critical. This issue affects an unknown code of the component Dialog Box. The manipulation as part of a HTML Page leads to a spoofing vulnerability. Using CWE to declare the problem leads to CWE-290. Impacted is confidentiality, integrity, and availability.

The weakness was published 06/27/2019. The identification of this vulnerability is CVE-2019-5833 since 01/09/2019. The attack may be initiated remotely. No form of authentication is needed for a successful exploitation. The technical details are unknown and an exploit is not publicly available. The pricing for an exploit might be around USD $5k-$25k at the moment (estimation calculated on 06/27/2019). It is expected to see the exploit prices for this product increasing in the near future.

Upgrading to version 75.0.3770.80 eliminates this vulnerability.

Similar entries are available at 137017, 137016, 137014 and 137013.

Type

Vendor

Name

VulDB Meta Base Score: 6.3
VulDB Meta Temp Score: 6.0

VulDB Base Score: 6.3
VulDB Temp Score: 6.0
VulDB Vector: 🔒
VulDB Reliability: 🔍


VulDB Base Score: 🔒
VulDB Temp Score: 🔒
VulDB Reliability: 🔍
Class: Spoofing (CWE-290)
Local: No
Remote: Yes

Availability: 🔒
Status: Not defined

Price Prediction: 🔍
Current Price Estimation: 🔒

Threat Intelligenceinfoedit

Threat: 🔍
Adversaries: 🔍
Geopolitics: 🔍
Economy: 🔍
Predictions: 🔍
Remediation: 🔍Recommended: Upgrade
Status: 🔍

0-Day Time: 🔒

Upgrade: Chrome 75.0.3770.80

01/09/2019 CVE assigned
06/27/2019 +169 days Advisory disclosed
06/27/2019 +0 days VulDB entry created
06/27/2019 +0 days VulDB last updateVendor: google.com
Product: google.com
CVE: CVE-2019-5833 (🔒)
scip Labs: https://www.scip.ch/en/?labs.20130704
See also: 🔒Created: 06/27/2019 10:21 PM
Complete: 🔍

Comments

No comments yet. Please log in to comment.

See the underground prices here!

https://vuldb.com/?id.137015

Download WordPress Themes Free
Download WordPress Themes Free
Download Premium WordPress Themes Free
Download WordPress Themes Free
free download udemy course

Tagged with:



Leave a Reply ✍


loading...