Lucene search

K
cvelistChromeCVELIST:CVE-2021-38020
HistoryDec 23, 2021 - 12:05 a.m.

CVE-2021-38020

2021-12-2300:05:55
Chrome
www.cve.org
4

AI Score

5.3

Confidence

Low

EPSS

0.005

Percentile

75.7%

Insufficient policy enforcement in contacts picker in Google Chrome on Android prior to 96.0.4664.45 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "96.0.4664.45",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]