CVE-2019-18893

XSS in the Video Downloader component before 1.5 of Avast Secure Browser 77.1.1831.91 and AVG Secure Browser 77.0.1790.77 allows websites to execute their code in the context of this component. While Video Downloader is technically a browser extension, it is granted a very wide set of privileges and can for example access cookies and browsing history, spy on the user while they are surfing the web, and alter their surfing experience in almost arbitrary ways.

CVSS v3 6.1 MEDIUM
CVSS v2.0 4.3 MEDIUM

6.1^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 2.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

4.3^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
https://palant.de/2020/01/13/pwning-avast-secure-browser-for-fun-and-profit/	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:avast:secure_browser:77.1.1831.91:::::::*
	cpe:2.3:a:avg:secure_browser:77.0.1790.77:::::::*
	cpe:2.3:a:video_downloader_project:video_downloader::::::::

History

No history.

Information

Published : 2020-01-13 17:15

Updated : 2024-02-28 17:28

NVD link : CVE-2019-18893

Mitre link : CVE-2019-18893

CVE.ORG link : CVE-2019-18893

JSON object : View

Products Affected

avg

secure_browser

video_downloader_project

video_downloader

avast

secure_browser

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

{"id": "CVE-2019-18893", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.8}]}, "published": "2020-01-13T17:15:11.540", "references": [{"url": "https://palant.de/2020/01/13/pwning-avast-secure-browser-for-fun-and-profit/", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "XSS in the Video Downloader component before 1.5 of Avast Secure Browser 77.1.1831.91 and AVG Secure Browser 77.0.1790.77 allows websites to execute their code in the context of this component. While Video Downloader is technically a browser extension, it is granted a very wide set of privileges and can for example access cookies and browsing history, spy on the user while they are surfing the web, and alter their surfing experience in almost arbitrary ways."}, {"lang": "es", "value": "Una vulnerabilidad de tipo XSS en el componente Video Downloader versiones anteriores a la versi\u00f3n 1.5 del Avast Secure Browser versi\u00f3n 77.1.1831.91 y AVG Secure Browser versi\u00f3n 77.0.1790.77, permite a los sitios web ejecutar su c\u00f3digo en el contexto de este componente. Aunque Video Downloader es t\u00e9cnicamente una extensi\u00f3n del navegador, se le otorga un rango muy amplio de privilegios y puede, por ejemplo, acceder a cookies y al historial de navegaci\u00f3n, espiar al usuario mientras navega en la web y alterar su experiencia de navegaci\u00f3n en modos casi arbitrarios."}], "lastModified": "2020-01-22T19:47:09.503", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:avast:secure_browser:77.1.1831.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8374E1C8-60CD-4293-AB5B-2217FF68476D"}, {"criteria": "cpe:2.3:a:avg:secure_browser:77.0.1790.77:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BDFD7A39-B9A0-4D66-80FA-27504D799ECF"}, {"criteria": "cpe:2.3:a:video_downloader_project:video_downloader:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9BA8FBA-5001-4AA4-9979-E4ED72839559", "versionEndExcluding": "1.5"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}