Lucene search

K
cvelistChromeCVELIST:CVE-2022-4926
HistoryJul 28, 2023 - 11:26 p.m.

CVE-2022-4926

2023-07-2823:26:54
Chrome
www.cve.org
6
insufficient policy enforcement
intents
google chrome
android
same origin policy
crafted html page
remote attacker
chromium
medium severity

AI Score

6.7

Confidence

High

EPSS

0.002

Percentile

54.5%

Insufficient policy enforcement in Intents in Google Chrome on Android prior to 109.0.5414.119 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)

CNA Affected

[
  {
    "vendor": "Google",
    "product": "Chrome",
    "versions": [
      {
        "version": "109.0.5414.119",
        "status": "affected",
        "lessThan": "109.0.5414.119",
        "versionType": "custom"
      }
    ]
  }
]

AI Score

6.7

Confidence

High

EPSS

0.002

Percentile

54.5%