5 matches found
EUVD-2025-19757
Malicious code in bioql PyPI...
CVE-2025-34092
Rejected reason: Neither filed by Chrome nor a valid security vulnerability...
CVE-2025-34092
...
CVE-2025-34092 Chrome Cookie Key Exposure via AppBound COM Path Validation Weakness
A cookie encryption bypass vulnerability exists in Google Chrome’s AppBound mechanism due to weak path validation logic within the elevation service. When Chrome encrypts a cookie key, it records its own executable path as validation metadata. Later, when decrypting, the elevation service compare...
CVE-2025-34092
CVE-2025-34092 describes a cookie encryption bypass in Google Chrome’s AppBound mechanism caused by weak path validation in the elevation service. The vulnerability allows an attacker to impersonate Chrome by naming a binary chrome.exe and placing it on a similar path, enabling retrieval of the e...