Forum
CVE-2023-1230 - Google Chrome
Zitat von MITs Forum am 7. März 2023, 0:00 UhrInappropriate implementation in WebApp Installs in Google Chrome on Android prior to 111.0.5563.64 allowed an attacker who convinced a user to install a malicious WebApp to spoof the contents of the PWA installer via a crafted HTML page. (Chromium security severity: Medium)
References
https://chromereleases.googleblog.com/2023/03/stable-channel-update-for-desktop.html
https://crbug.com/1404230
Inappropriate implementation in WebApp Installs in Google Chrome on Android prior to 111.0.5563.64 allowed an attacker who convinced a user to install a malicious WebApp to spoof the contents of the PWA installer via a crafted HTML page. (Chromium security severity: Medium)
References
https://chromereleases.googleblog.com/2023/03/stable-channel-update-for-desktop.html
https://crbug.com/1404230