Arbitrary Command Execution Vulnerability in Chrome Launcher

Arbitrary Command Execution Vulnerability in Chrome Launcher

CVE-2020-7645 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

All versions of chrome-launcher allow execution of arbitrary commands, by controlling the $HOME environment variable in Linux operating systems.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.