Lucene search

K
prionPRIOn knowledge basePRION:CVE-2024-0810
HistoryJan 24, 2024 - 12:15 a.m.

Design/Logic Flaw

2024-01-2400:15:00
PRIOn knowledge base
www.prio-n.com
8
insufficient policy enforcement
google chrome
cross-origin data
crafted extension
security vulnerability

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.5%

Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Medium)

CPENameOperatorVersion
chromelt121.0.6167.85