Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/avoidthehack/statuses/113187386585105580">Avoid the Hack! :donor: (avoidthehack@infosec.exchange)'s status on Monday, 23-Sep-2024 23:41:53 JST</a><a href="https://infosec.exchange/@avoidthehack" title="avoidthehack@infosec.exchange"><img src="https://gnusocial.jp/avatar/202278-48-20240109195031.webp" width="48" height="48" alt="Avoid the Hack! :donor:" style="position: absolute; left: 0; top: 0;">Avoid the Hack! :donor:</a></section><article><p>Researcher reveals ‘catastrophic’ <a href="https://infosec.exchange/tags/security" rel="tag">#security</a> flaw in the Arc browser</p><p>(CVE-2024-45489)</p><p>The Arc Browser is a fork of <a href="https://infosec.exchange/tags/chromium" rel="tag">#chromium</a> with a lot of built-in features and integrations... and requires an account to use.</p><p>Arc Browser uses Firebase to store user information for features like Arc Boosts. Arc Boosts can contain arbitrary javascript... with knowing the CreatorID, an attacker could inject code into other users' browsing sessions.</p><p>Crazy to me because this implementation appeared to rely solely on user-provided identities (the CreatorID) without implementing any checks.</p><p>This has been patched in the newest version of the Arc browser.</p><p><a href="https://infosec.exchange/tags/browsers" rel="tag">#browsers</a> <a href="https://infosec.exchange/tags/cybersecurity" rel="tag">#cybersecurity</a> <a href="https://infosec.exchange/tags/cve" rel="tag">#cve</a></p><p><a href="https://www.theverge.com/2024/9/20/24249919/arc-browser-boost-firebase-vulnerability-patched" rel="nofollow noreferrer">https://www.theverge.com/2024/9/20/24249919/arc-browser-boost-firebase-vulnerability-patched</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/3714338#notice-7274711">In conversation</a><time datetime="2024-09-23T23:41:53+09:00" title="Monday, 23-Sep-2024 23:41:53 JST">about 2 months ago</time> <span>from <span><a href="https://infosec.exchange/@avoidthehack/113187386585105580" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@avoidthehack/113187386585105580">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Avoid the Hack! :donor: (avoidthehack@infosec.exchange)'s status on Monday, 23-Sep-2024 23:41:53 JST Avoid the Hack! :donor:
Researcher reveals ‘catastrophic’ #security flaw in the Arc browser
(CVE-2024-45489)
The Arc Browser is a fork of #chromium with a lot of built-in features and integrations... and requires an account to use.
Arc Browser uses Firebase to store user information for features like Arc Boosts. Arc Boosts can contain arbitrary javascript... with knowing the CreatorID, an attacker could inject code into other users' browsing sessions.
Crazy to me because this implementation appeared to rely solely on user-provided identities (the CreatorID) without implementing any checks.
This has been patched in the newest version of the Arc browser.
#browsers #cybersecurity #cve
https://www.theverge.com/2024/9/20/24249919/arc-browser-boost-firebase-vulnerability-patched
In conversationabout 2 months ago from infosec.exchangepermalink

Public

Embed Notice

HTML Code

Corresponding Notice