codeium-chrome security vulnerability

codeium-chrome is an open source code completion plugin for the Chrome web browser. A security vulnerability exists in Chrome plugin codeium-chrome version v1.2.52, which stems from Service Worker not checking the sender when receiving an external message, allowing an attacker to host a website a...

PT-2024-2625 · Unknown · Codeium-Chrome

Name of the Vulnerable Software and Affected Versions: codeium-chrome affected versions not specified Description: The issue is related to the lack of protection for service data in the codeium-chrome plugin. An attacker can exploit this to send arbitrary requests to the internal autocomplete...