CVE-2023-45592 Information

Description

A CWE-250 “Execution with Unnecessary Privileges” vulnerability in the embedded Chromium browser (due to the binary being executed with the “–no-sandbox” option and with root privileges) exacerbates the impacts of successful attacks executed against the browser. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.

Reference

https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-45592