Vulnerability Details CVE-2020-7645
All versions of chrome-launcher allow execution of arbitrary commands, by controlling the $HOME environment variable in Linux operating systems.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-7645
-
cpe:2.3:a:google:chrome-launcher:-
-
cpe:2.3:a:google:chrome-launcher:0.1.1
-
cpe:2.3:a:google:chrome-launcher:0.10.0
-
cpe:2.3:a:google:chrome-launcher:0.10.1
-
cpe:2.3:a:google:chrome-launcher:0.10.2
-
cpe:2.3:a:google:chrome-launcher:0.10.3
-
cpe:2.3:a:google:chrome-launcher:0.10.4
-
cpe:2.3:a:google:chrome-launcher:0.10.5
-
cpe:2.3:a:google:chrome-launcher:0.10.6
-
cpe:2.3:a:google:chrome-launcher:0.10.7
-
cpe:2.3:a:google:chrome-launcher:0.11.0
-
cpe:2.3:a:google:chrome-launcher:0.11.1
-
cpe:2.3:a:google:chrome-launcher:0.11.2
-
cpe:2.3:a:google:chrome-launcher:0.12.0
-
cpe:2.3:a:google:chrome-launcher:0.13.0
-
cpe:2.3:a:google:chrome-launcher:0.13.1
-
cpe:2.3:a:google:chrome-launcher:0.7.0
-
cpe:2.3:a:google:chrome-launcher:0.8.0
-
cpe:2.3:a:google:chrome-launcher:0.8.1
-
cpe:2.3:a:google:chrome-launcher:0.9.0